Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
33
GitHub Actions
22
Go
2,121
Maven
5,000+
npm
3,783
NuGet
683
pip
3,465
Pub
12
RubyGems
893
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

541 advisories

Loading
An uncontrolled search path element vulnerability (DLL hijacking) has been discovered that could... High Unreviewed
CVE-2023-29445 was published Jan 10, 2024
Uncontrolled search path vulnerabilities were reported in the Lenovo Universal Device Client (UDC... High Unreviewed
CVE-2023-6338 was published Jan 3, 2024
Facsimile Support for IBM i 7.2, 7.3, 7.4, and 7.5 could allow a local user to gain elevated... High Unreviewed
CVE-2023-43064 was published Dec 25, 2023
Usage of user controlled LD_LIBRARY_PATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows... High Unreviewed
CVE-2023-31210 was published Dec 13, 2023
In BeyondTrust Privilege Management for Windows (aka PMfW) through 5.7, a SYSTEM installation... High Unreviewed
CVE-2020-28369 was published Dec 12, 2023
Local privilege escalation due to DLL hijacking vulnerability. The following products are... High Unreviewed
CVE-2023-48677 was published Dec 12, 2023
An issue was discovered in EnterpriseDB Postgres Advanced Server (EPAS) before 11.21.32, 12.x... High Unreviewed
CVE-2023-41117 was published Dec 12, 2023
DLL hijacking vulnerability in TTplayer version 7.0.2, allows local attackers to escalate... High Unreviewed
CVE-2023-48861 was published Dec 7, 2023
EzViz Studio v2.2.0 is vulnerable to DLL hijacking. High Unreviewed
CVE-2023-41613 was published Dec 4, 2023
DLL Hijacking vulnerability in Huddly HuddlyCameraService before version 8.0.7, not including... High Unreviewed
CVE-2023-45252 was published Dec 1, 2023
An Untrusted search path vulnerability in NetEase CloudMusic 2.10.4 for Windows allows local... High Unreviewed
CVE-2023-47454 was published Nov 30, 2023
An Untrusted search path vulnerability in notepad++ 6.5 allows local users to gain escalated... High Unreviewed
CVE-2023-47452 was published Nov 30, 2023
An Untrusted search path vulnerability in Sohu Video Player 7.0.15.0 allows local users to gain... High Unreviewed
CVE-2023-47453 was published Nov 30, 2023
Uncontrolled Search Path Element vulnerability in Pandora FMS on all allows Leveraging... High Unreviewed
CVE-2023-41790 was published Nov 23, 2023
A maliciously crafted DLL file can be forced to install onto a non-default location, and attacker... High Unreviewed
CVE-2023-29069 was published Nov 22, 2023
A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on... High Unreviewed
CVE-2023-46814 was published Nov 22, 2023
An uncontrolled search path element vulnerability has been found in the Duet Display product,... High Unreviewed
CVE-2023-6235 was published Nov 21, 2023
Multiple DLL Search Order Hijack vulnerabilities were addressed in the SanDisk Security Installer... High Unreviewed
CVE-2023-22818 was published Nov 15, 2023
An uncontrolled search path vulnerability was reported in Lenovo System Update that could allow... High Unreviewed
CVE-2023-4632 was published Nov 9, 2023
NVIDIA GPU Display Driver for Windows contains a vulnerability that allows Windows users with low... High Unreviewed
CVE-2023-31027 was published Nov 2, 2023
NVIDIA GPU Display Driver for Windows contains a vulnerability where an uncontrolled search path... High Unreviewed
CVE-2023-31016 was published Nov 2, 2023
SonicWall NetExtender Windows (32-bit and 64-bit) client 10.2.336 and earlier versions have a DLL... High Unreviewed
CVE-2023-44220 was published Oct 27, 2023
It is possible to sideload a compromised DLL during the installation at elevated privilege. High Unreviewed
CVE-2023-4936 was published Oct 11, 2023
A vulnerability was found in XINJE XDPPro up to 3.7.17a. It has been rated as critical. Affected... High Unreviewed
CVE-2023-5463 was published Oct 10, 2023
IBM Spectrum Protect Client and IBM Storage Protect for Virtual Environments 8.1.0.0 through 8.1... High Unreviewed
CVE-2023-35897 was published Oct 6, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database