Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

127 advisories

Loading
Uncontrolled search path in the WULT software maintained by Intel(R) before version 1.0.0 (commit... High Unreviewed
CVE-2023-27298 was published May 10, 2023
Uncontrolled search path for the DSP Builder software installer before version 22.4 for Intel(R)... High Unreviewed
CVE-2022-43474 was published May 10, 2023
Uncontrolled search path in the Intel(R) Quartus(R) Prime Pro edition software before version 22... High Unreviewed
CVE-2022-41693 was published May 10, 2023
Uncontrolled search path for the Intel(R) NUC Pro Software Suite before version 2.0.0.3 may allow... High Unreviewed
CVE-2022-34848 was published May 10, 2023
Uncontrolled search path in some Intel(R) NUC Chaco Canyon BIOS update software before version... High Unreviewed
CVE-2022-38101 was published May 10, 2023
Unquoted Search Path or Element vulnerability in 42Gears Surelock Windows SureLock Service ... High Unreviewed
CVE-2023-2331 was published Apr 27, 2023
WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a... High Unreviewed
CVE-2023-22282 was published Apr 11, 2023
VX Search v13.8 and v14.7 was discovered to contain an unquoted service path vulnerability which... High Unreviewed
CVE-2023-24671 was published Mar 16, 2023
A vulnerability was found in phjounin TFTPD64-SE 4.64 and classified as critical. This issue... High Unreviewed
CVE-2023-0887 was published Feb 17, 2023
Dentsply Sirona Sidexis <= 4.3 is vulnerable to Unquoted Service Path. High Unreviewed
CVE-2022-44264 was published Jan 27, 2023
In multiple versions of HIMA PC based Software an unquoted Windows search path vulnerability... High Unreviewed
CVE-2022-4258 was published Jan 16, 2023
Realtek Audio Drivers for Windows, as used on the Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS, and... High Unreviewed
CVE-2019-19705 was published Dec 26, 2022
IOBit IOTransfer V4 is vulnerable to Unquoted Service Path. High Unreviewed
CVE-2022-37197 was published Nov 18, 2022
Unquoted search path in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers... High Unreviewed
CVE-2022-36384 was published Nov 11, 2022
Beijing Feishu Technology Co., Ltd Feishu v3.40.3 was discovered to contain an untrusted search... High Unreviewed
CVE-2021-3305 was published Oct 18, 2022
Dell GeoDrive, versions prior to 2.2, contains an Unquoted File Path vulnerability. A low... High Unreviewed
CVE-2022-33920 was published Oct 13, 2022
Panini Everest Engine 2.0.4 allows unprivileged users to create a file named Everest.exe in the ... High Unreviewed
CVE-2022-39959 was published Oct 8, 2022
In SAP Business One application when a service is created, the executable path contains spaces... High Unreviewed
CVE-2022-35292 was published Sep 14, 2022
Okta Active Directory Agent versions 3.8.0 through 3.11.0 installed the Okta AD Agent Update... High Unreviewed
CVE-2022-1697 was published Sep 7, 2022
There is an unquoted service path in ASUSTeK Aura Ready Game SDK service (GameSDK.exe) 1.0.0.4.... High Unreviewed
CVE-2022-35899 was published Jul 22, 2022
A vulnerability has been found in FileZilla Client 3.17.0.0 and classified as problematic. This... High Unreviewed
CVE-2016-15003 was published Jul 19, 2022
SAP BusinessObjects BW Publisher Service - versions 420, 430, uses a search path that contains an... High Unreviewed
CVE-2022-31591 was published Jul 13, 2022
Cloudflare Warp for Windows from version 2022.2.95.0 contained an unquoted service path which... High Unreviewed
CVE-2022-2147 was published Jun 24, 2022
SAP PowerDesigner Proxy - version 16.7, allows an attacker with low privileges and has local... High Unreviewed
CVE-2022-31590 was published Jun 15, 2022
Unquoted search path in the installer for the Intel(R) NUC M15 Laptop Kit Keyboard LED Service... High Unreviewed
CVE-2021-33095 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database