Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

691 advisories

Loading
Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.5 contain a Local... High Unreviewed
CVE-2022-24426 was published Apr 2, 2022
The G-RAID 4/8 Software Utility setups for Windows were affected by a DLL hijacking vulnerability... High Unreviewed
CVE-2022-22996 was published Mar 31, 2022
Razer Synapse before 3.7.0228.022817 allows privilege escalation because it relies on ... High Unreviewed
CVE-2021-44226 was published Mar 25, 2022
Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x searches for and loads DLLs as dynamic... Moderate Unreviewed
CVE-2020-25182 was published Mar 19, 2022
The installer of WPS Office Version 10.8.0.5745 insecurely load shcore.dll, allowing an attacker... High Unreviewed
CVE-2022-26081 was published Mar 18, 2022
WPS Presentation 11.8.0.5745 insecurely load d3dx9_41.dll when opening .pps files('current... High Unreviewed
CVE-2022-26511 was published Mar 18, 2022
The installer of WPS Office Version 10.8.0.6186 insecurely load VERSION.DLL (or some other DLLs),... High Unreviewed
CVE-2022-25969 was published Mar 18, 2022
The following Yokogawa Electric products contain insecure DLL loading issues. CENTUM CS 3000... High Unreviewed
CVE-2022-23401 was published Mar 12, 2022
An installer search patch element vulnerability in Trend Micro Portable Security 3.0 Pro, 3.0 and... Moderate Unreviewed
CVE-2022-26319 was published Mar 9, 2022
Trend Micro Password Manager (Consumer) installer version 5.0.0.1262 and below is vulnerable to... High Unreviewed
CVE-2022-26337 was published Mar 9, 2022
VMware Tools for Windows (11.x.y and 10.x.y prior to 12.0.0) contains an uncontrolled search path... High Unreviewed
CVE-2022-22943 was published Mar 4, 2022
Adobe Creative Cloud Desktop version 2.7.0.13 (and earlier) is affected by an Uncontrolled Search... High Unreviewed
CVE-2022-23202 was published Feb 17, 2022
Affected versions of Atlassian Confluence Server and Data Center allow authenticated local... High Unreviewed
CVE-2021-43940 was published Feb 16, 2022
AXIS IP Utility prior to 4.17.0 allows for remote code execution and local privilege escalation... High Unreviewed
CVE-2022-23410 was published Feb 15, 2022
Foxit PDF Reader before 11.2.1 and Foxit PDF Editor before 11.2.1 have an Uncontrolled Search... Critical Unreviewed
CVE-2022-24955 was published Feb 12, 2022
The LSP (Language Server Protocol) plugin in KDE Kate before 21.12.2 and KTextEditor before 5.91... High Unreviewed
CVE-2022-23853 was published Feb 12, 2022
Git LFS can execute a Git binary from the current directory Critical
CVE-2020-27955 was published for github.com/git-lfs/git-lfs (Go) Feb 11, 2022
dawidgolunski
Uncontrolled Search Path Element in software for Intel(R) PROSet/Wireless Wi-Fi in Windows 10 and... Moderate Unreviewed
CVE-2021-0169 was published Feb 11, 2022
Uncontrolled search path in the Intel(R) GPA software before version 21.2 may allow an... High Unreviewed
CVE-2021-33101 was published Feb 11, 2022
SAP Adaptive Server Enterprise (ASE) - version 16.0, installation makes an entry in the system... High Unreviewed
CVE-2022-22528 was published Feb 11, 2022
AMD Radeon Software may be vulnerable to DLL Hijacking through path variable. An unprivileged... High Unreviewed
CVE-2020-12891 was published Feb 10, 2022
Local privilege escalation due to DLL hijacking vulnerability in Acronis Media Builder service.... High Unreviewed
CVE-2021-44206 was published Feb 10, 2022
Local privilege escalation due to DLL hijacking vulnerability. The following products are... High Unreviewed
CVE-2021-44205 was published Feb 10, 2022
Missing DLLs, if replaced by an insider, could allow an attacker to achieve local privilege... High Unreviewed
CVE-2021-44463 was published Jan 29, 2022
A local privilege escalation (PE) vulnerability exists in the Palo Alto Networks Cortex XDR agent... High Unreviewed
CVE-2022-0015 was published Jan 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database