Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,335
Erlang
31
GitHub Actions
22
Go
2,096
Maven
5,000+
npm
3,762
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

399 advisories

Loading
Microsoft Dataverse Remote Code Execution Vulnerability High Unreviewed
CVE-2024-35260 was published Jun 27, 2024
A vulnerability classified as critical was found in Intelbras InControl 2.21.56. This... High Unreviewed
CVE-2024-6080 was published Jun 18, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30100 was published Jun 11, 2024
A local low privileged attacker can use an untrusted search path in... High Unreviewed
CVE-2024-28133 was published May 14, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-20693 was published Apr 9, 2024
Lightroom Desktop versions 7.1.2 and earlier are affected by an Untrusted Search Path... High Unreviewed
CVE-2024-20754 was published Mar 18, 2024
Microsoft Exchange Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26198 was published Mar 12, 2024
Windows OLE Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21435 was published Mar 12, 2024
Untrusted search path in some Zoom 32 bit Windows clients may allow an authenticated user to... High Unreviewed
CVE-2024-24697 was published Feb 14, 2024
Cybozu KUNAI for Android 3.0.20 to 3.0.21 allows a remote unauthenticated attacker to cause a... High Unreviewed
CVE-2024-23304 was published Feb 6, 2024
Microsoft Printer Metadata Troubleshooter Tool Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21325 was published Jan 9, 2024
Dell SupportAssist for Home PCs version 3.14.1 and prior versions contain a privilege escalation... High Unreviewed
CVE-2023-48670 was published Dec 22, 2023
Path traversal in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for... High Unreviewed
CVE-2023-43586 was published Dec 14, 2023
A untrusted search path vulnerability in Fortinet FortiClientWindows 7.0.9 allows an attacker to... High Unreviewed
CVE-2023-41840 was published Nov 14, 2023
Zscaler Client Connector for macOS prior to 3.7 had an unquoted search path vulnerability via the... High Unreviewed
CVE-2021-26738 was published Oct 23, 2023
Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833. High Unreviewed
CVE-2023-4736 was published Sep 2, 2023
An issue was discovered in Python 3.11 through 3.11.4. If a path containing '\0' bytes is passed... High Unreviewed
CVE-2023-41105 was published Aug 23, 2023
Uncontrolled search path in some Intel(R) RST software before versions 16.8.5.1014.5, 17.11.3... High Unreviewed
CVE-2022-43456 was published Aug 11, 2023
Untrusted search path in the installer for Zoom Desktop Client for Windows before 5.14.5 may... High Unreviewed
CVE-2023-36540 was published Aug 8, 2023
Untrusted search path in the installer for Zoom Rooms before version 5.15.0 may allow an... High Unreviewed
CVE-2023-36536 was published Jul 11, 2023
Improper access control in Zoom Rooms before version 5.15.0 may allow an authenticated user to... High Unreviewed
CVE-2023-36538 was published Jul 11, 2023
Insecure temporary file in the installer for Zoom Rooms before version 5.15.0 may allow an... High Unreviewed
CVE-2023-34119 was published Jul 11, 2023
An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed
CVE-2023-34145 was published Jun 27, 2023
An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed
CVE-2023-34144 was published Jun 27, 2023
kodbox 1.2.x through 1.3.7 has a Sensitive Information Leakage issue. High Unreviewed
CVE-2023-29790 was published May 22, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database