Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
33
GitHub Actions
22
Go
2,121
Maven
5,000+
npm
3,783
NuGet
683
pip
3,465
Pub
12
RubyGems
893
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

541 advisories

Loading
A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on... High Unreviewed
CVE-2023-46814 was published Nov 22, 2023
A maliciously crafted DLL file can be forced to install onto a non-default location, and attacker... High Unreviewed
CVE-2023-29069 was published Nov 22, 2023
Uncontrolled Search Path Element vulnerability in Pandora FMS on all allows Leveraging... High Unreviewed
CVE-2023-41790 was published Nov 23, 2023
An Untrusted search path vulnerability in NetEase CloudMusic 2.10.4 for Windows allows local... High Unreviewed
CVE-2023-47454 was published Nov 30, 2023
An Untrusted search path vulnerability in notepad++ 6.5 allows local users to gain escalated... High Unreviewed
CVE-2023-47452 was published Nov 30, 2023
An Untrusted search path vulnerability in Sohu Video Player 7.0.15.0 allows local users to gain... High Unreviewed
CVE-2023-47453 was published Nov 30, 2023
DLL Hijacking vulnerability in Huddly HuddlyCameraService before version 8.0.7, not including... High Unreviewed
CVE-2023-45252 was published Dec 1, 2023
EzViz Studio v2.2.0 is vulnerable to DLL hijacking. High Unreviewed
CVE-2023-41613 was published Dec 4, 2023
DLL hijacking vulnerability in TTplayer version 7.0.2, allows local attackers to escalate... High Unreviewed
CVE-2023-48861 was published Dec 7, 2023
An issue was discovered in EnterpriseDB Postgres Advanced Server (EPAS) before 11.21.32, 12.x... High Unreviewed
CVE-2023-41117 was published Dec 12, 2023
Local privilege escalation due to DLL hijacking vulnerability. The following products are... High Unreviewed
CVE-2023-48677 was published Dec 12, 2023
In BeyondTrust Privilege Management for Windows (aka PMfW) through 5.7, a SYSTEM installation... High Unreviewed
CVE-2020-28369 was published Dec 12, 2023
Usage of user controlled LD_LIBRARY_PATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows... High Unreviewed
CVE-2023-31210 was published Dec 13, 2023
Facsimile Support for IBM i 7.2, 7.3, 7.4, and 7.5 could allow a local user to gain elevated... High Unreviewed
CVE-2023-43064 was published Dec 25, 2023
Uncontrolled search path vulnerabilities were reported in the Lenovo Universal Device Client (UDC... High Unreviewed
CVE-2023-6338 was published Jan 3, 2024
An uncontrolled search path element vulnerability (DLL hijacking) has been discovered that could... High Unreviewed
CVE-2023-29445 was published Jan 10, 2024
Privilege escalation in jar_signature agent plugin in Checkmk before 2.2.0p17, 2.1.0p37 and 2.0... High Unreviewed
CVE-2023-6740 was published Jan 12, 2024
Uncontrolled search path in some Intel NUC Pro Software Suite Configuration Tool software... High Unreviewed
CVE-2023-32272 was published Jan 19, 2024
An issue was discovered in Regify Regipay Client for Windows version 4.5.1.0 allows DLL hijacking... High Unreviewed
CVE-2023-51711 was published Jan 24, 2024
Trend Micro uiAirSupport, included in the Trend Micro Security 2023 family of consumer products,... High Unreviewed
CVE-2024-23940 was published Jan 29, 2024
The vulnerability, if exploited, could allow a malicious entity with access to the file system... High Unreviewed
CVE-2023-6132 was published Feb 29, 2024
Delta Electronics CNCSoft-B DOPSoft prior to v4.0.0.82 insecurely loads libraries, which may... High Unreviewed
CVE-2024-1595 was published Feb 29, 2024
electron-builder's NSIS installer - execute arbitrary code on the target machine (Windows only) High
CVE-2024-27303 was published for app-builder-lib (npm) Mar 4, 2024
bruno-1337
A vulnerability in the ISE Posture (System Scan) module of Cisco Secure Client for Linux could... High Unreviewed
CVE-2024-20338 was published Mar 6, 2024
Privilege escalation in windows agent plugin in Checkmk before 2.2.0p23, 2.1.0p40 and 2.0.0 (EOL)... High Unreviewed
CVE-2024-0670 was published Mar 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database