Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,411
Erlang
33
GitHub Actions
22
Go
2,146
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
899
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

535 advisories

Loading
AnyDesk before 6.1.0 on Windows, when run in portable mode on a system where the attacker has... High Unreviewed
CVE-2020-35483 was published May 24, 2022
Untrusted search path vulnerability in self-extracting files created by EpsonNet SetupManager... High Unreviewed
CVE-2020-5681 was published May 24, 2022
Western Digital Dashboard before 3.2.2.9 allows DLL Hijacking that leads to compromise of the... High Unreviewed
CVE-2020-29654 was published May 24, 2022
Adobe Prelude version 9.0.1 (and earlier) is affected by an uncontrolled search path element that... High Unreviewed
CVE-2020-24440 was published May 24, 2022
Adobe Lightroom Classic version 10.0 (and earlier) for Windows is affected by an uncontrolled... High Unreviewed
CVE-2020-24447 was published May 24, 2022
A local privilege escalation vulnerability exists in Palo Alto Networks Cortex XDR Agent on the... High Unreviewed
CVE-2020-2049 was published May 24, 2022
The installer of Kaspersky Anti-Ransomware Tool (KART) prior to KART 4.0 Patch C was vulnerable... High Unreviewed
CVE-2020-28950 was published May 24, 2022
NVIDIA GeForce NOW application software on Windows, all versions prior to 2.0.25.119, contains a... High Unreviewed
CVE-2020-5992 was published May 24, 2022
Various components in Ivanti Endpoint Manager through 2020.1.1 rely on Windows search order when... High Unreviewed
CVE-2020-13771 was published May 24, 2022
Uncontrolled search path in the Intel(R) VTune(TM) Profiler before version 2020 Update 1 may... High Unreviewed
CVE-2020-12329 was published May 24, 2022
Uncontrolled search path in Intel(R) SCS Add-on for Microsoft* SCCM before version 2.1.10 may... High Unreviewed
CVE-2020-12320 was published May 24, 2022
A DLL hijacking vulnerability in the B. Braun OnlineSuite Version AP 3.0 and earlier allows local... High Unreviewed
CVE-2020-25174 was published May 24, 2022
SonicWall Global VPN client version 4.10.4.0314 and earlier have an insecure library loading (DLL... High Unreviewed
CVE-2020-5145 was published May 24, 2022
NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in NVIDIA... High Unreviewed
CVE-2020-5977 was published May 24, 2022
Adobe Premiere Pro version 14.4 (and earlier) is affected by an uncontrolled search path element... High Unreviewed
CVE-2020-24424 was published May 24, 2022
Adobe Media Encoder version 14.4 (and earlier) for Windows is affected by an uncontrolled search... High Unreviewed
CVE-2020-24423 was published May 24, 2022
Dreamweaver version 20.2 (and earlier) is affected by an uncontrolled search path element... High Unreviewed
CVE-2020-24425 was published May 24, 2022
Adobe Creative Cloud Desktop Application version 5.2 (and earlier) and 2.1 (and earlier) for... High Unreviewed
CVE-2020-24422 was published May 24, 2022
Adobe Photoshop for Windows version 21.2.1 (and earlier) is affected by an uncontrolled search... High Unreviewed
CVE-2020-24420 was published May 24, 2022
Adobe After Effects version 17.1.1 (and earlier) for Windows is affected by an uncontrolled... High Unreviewed
CVE-2020-24419 was published May 24, 2022
A DLL search path vulnerability was reported in the Lenovo HardwareScan Plugin for the Lenovo... High Unreviewed
CVE-2020-8345 was published May 24, 2022
monero-wallet-gui in Monero GUI 0.17.0.1 includes the . directory in an embedded RPATH (with a... High Unreviewed
CVE-2020-26947 was published May 24, 2022
An escalation of privilege vulnerability in Nahimic APO Software Component Driver 1.4.2, 1.5.0, 1... High Unreviewed
CVE-2019-19115 was published May 24, 2022
A vulnerability in the loading mechanism of specific DLLs in the Cisco Webex Teams client for... High Unreviewed
CVE-2020-3535 was published May 24, 2022
If Firefox is installed to a user-writable directory, the Mozilla Maintenance Service would... High Unreviewed
CVE-2020-15663 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database