Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

420 advisories

Loading
An untrusted search path vulnerability in testinitsigs.exe as used in Bitdefender Antivirus Free... High Unreviewed
CVE-2020-8094 was published Jan 15, 2025
mDNSResponder.exe is vulnerable to DLL Sideloading attack. Executable improperly specifies how to... High Unreviewed
CVE-2022-23748 was published Nov 18, 2022
An issue in the USB Autorun function of HI-SCAN 6040i Hitrax HX-03-19-I allows attackers to... High Unreviewed
CVE-2024-48123 was published Jan 15, 2025
Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21399 was published Jan 17, 2025
Snowflake JDBC allows an untrusted search path on Windows High
CVE-2025-24789 was published for net.snowflake:snowflake-jdbc (Maven) Jan 29, 2025
sccache vulnerable to privilege escalation if server is run as root High
CVE-2023-1521 was published for sccache (Rust) May 30, 2023
redsun82 kevinbackhouse
A vulnerability was found in Rise Group Rise Mode Temp CPU 2.1. It has been classified as... High Unreviewed
CVE-2025-0707 was published Jan 24, 2025
kodbox 1.2.x through 1.3.7 has a Sensitive Information Leakage issue. High Unreviewed
CVE-2023-29790 was published May 22, 2023
Excessive binary privileges in Ivanti Connect Secure which affects versions 22.4R2 through 22.7R2... High Unreviewed
CVE-2024-47906 was published Nov 12, 2024
Microsoft Office Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21365 was published Jan 14, 2025
** DISPUTED ** A vulnerability has been found in Scooter Software Beyond Compare up to 3.3.5... High Unreviewed
CVE-2024-7886 was published Aug 17, 2024
Apache Hadoop allows local user to gain root privileges High
CVE-2023-26031 was published for org.apache.hadoop:hadoop-yarn-project (Maven) Nov 16, 2023
vulnerability-analyst anonymous-nlp-student
A maliciously crafted DLL file, when placed in the same directory as an RVT file could be loaded... High Unreviewed
CVE-2024-11454 was published Dec 9, 2024
DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes... High Unreviewed
CVE-2024-45207 was published Dec 4, 2024
An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted... High Unreviewed
CVE-2024-50986 was published Nov 15, 2024
Substance3D - Painter versions 10.1.0 and earlier are affected by an Untrusted Search Path... High Unreviewed
CVE-2024-49515 was published Nov 12, 2024
A untrusted search path in Fortinet FortiClientWindows versions 7.4.0, versions 7.2.4 through 7.2... High Unreviewed
CVE-2024-36507 was published Nov 12, 2024
Microsoft.SqlServer.XEvent.Configuration.dll Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49043 was published Nov 12, 2024
A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT... High Unreviewed
CVE-2024-7995 was published Nov 5, 2024
A vulnerability classified as critical was found in Intelbras InControl 2.21.56. This... High Unreviewed
CVE-2024-6080 was published Jun 18, 2024
A vulnerability classified as critical has been found in Intelbras InControl up to 2.21.56. This... High Unreviewed
CVE-2024-9325 was published Sep 29, 2024
Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Untrusted Search Path... High Unreviewed
CVE-2024-47422 was published Oct 9, 2024
Microsoft Office Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43616 was published Oct 8, 2024
Microsoft Office Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43576 was published Oct 8, 2024
A potential security vulnerability has been identified in the HP One Agent for certain HP PC... High Unreviewed
CVE-2024-8733 was published Oct 2, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database