Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,342
Erlang
31
GitHub Actions
22
Go
2,106
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

178 advisories

Loading
In ControlUp Real-Time Agent before 8.6, an unquoted path can result in privilege escalation. An... High Unreviewed
CVE-2022-27905 was published Apr 28, 2022
In Philips' IntelliSpace Cardiovascular (ISCV) products (ISCV Version 3.1 or prior and Xcelera... Moderate Unreviewed
CVE-2018-14789 was published Apr 30, 2022
An Unquoted Search Path or Element issue was discovered in Automated Logic Corporation (ALC) ALC... High Unreviewed
CVE-2017-9644 was published May 13, 2022
Net Monitor for Employees Pro through 5.3.4 has an unquoted service path, which allows a Security... High Unreviewed
CVE-2017-7180 was published May 13, 2022
Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender... Moderate Unreviewed
CVE-2015-4173 was published May 13, 2022
FreeSSHd 1.3.1 version is vulnerable to an Unquoted Path Service allowing local users to launch... High Unreviewed
CVE-2017-1000475 was published May 13, 2022
Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel... Moderate Unreviewed
CVE-2014-5455 was published May 13, 2022
Unquoted windows search path (directory/path traversal) vulnerability in Crystal Reports Server,... Moderate Unreviewed
CVE-2018-2406 was published May 13, 2022
An unquoted search path or element in RSLinx Classic Versions 3.90.01 and prior and FactoryTalk... High Unreviewed
CVE-2018-10619 was published May 13, 2022
The BIND installer on Windows uses an unquoted service path which can enable a local user to... High Unreviewed
CVE-2017-3141 was published May 13, 2022
An issue was discovered in Moxa MXview v2.8 and prior. The unquoted service path escalation... High Unreviewed
CVE-2017-14030 was published May 13, 2022
An Unquoted Search Path or Element issue was discovered in Progea Movicon Version 11.5.1181 and... Moderate Unreviewed
CVE-2017-14019 was published May 13, 2022
An Unquoted Search Path issue was discovered in mySCADA myPRO Versions 7.0.26 and prior.... High Unreviewed
CVE-2017-12730 was published May 13, 2022
Adobe Photoshop versions CC 2017 (18.0.1) and earlier, CC 2015.5.1 (17.0.1) and earlier have an... High Unreviewed
CVE-2017-3005 was published May 14, 2022
In some Lenovo ThinkPads, an unquoted search path vulnerability was found in various versions of... High Unreviewed
CVE-2018-16098 was published May 14, 2022
WINMAGIC SecureDoc Disk Encryption software before 8.3 has an Unquoted Service Path vulnerability... High Unreviewed
CVE-2018-20341 was published May 14, 2022
An unquoted search path vulnerability was identified in Lenovo Dynamic Power Reduction Utility... High Unreviewed
CVE-2019-6149 was published May 14, 2022
Unquoted Windows search path vulnerability in NSClient++ before 0.4.1.73 allows non-privileged... High Unreviewed
CVE-2018-6384 was published May 14, 2022
An unquoted search path vulnerability in some pre-installed applications on Panasonic PC run on... High Unreviewed
CVE-2018-16183 was published May 14, 2022
Dell WMS versions 1.1 and prior are impacted by multiple unquoted service path vulnerabilities.... High Unreviewed
CVE-2018-11063 was published May 14, 2022
Unquoted service paths in Intel Quartus Prime Programmer and Tools in versions 15.1 - 18.0 allow... High Unreviewed
CVE-2018-3688 was published May 14, 2022
Unquoted service paths in Intel Quartus II Programmer and Tools in versions 11.0 - 15.0 allow a... High Unreviewed
CVE-2018-3687 was published May 14, 2022
Unquoted service paths in Intel Quartus II in versions 11.0 - 15.0 allow a local attacker to... High Unreviewed
CVE-2018-3684 was published May 14, 2022
Unquoted service paths in Intel Quartus Prime in versions 15.1 - 18.0 allow a local attacker to... High Unreviewed
CVE-2018-3683 was published May 14, 2022
Unquoted service paths in Intel Processor Diagnostic Tool (IPDT) before version 4.1.0.27 allows a... High Unreviewed
CVE-2018-3668 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database