Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,608
Erlang
33
GitHub Actions
25
Go
2,221
Maven
5,000+
npm
3,893
NuGet
701
pip
3,659
Pub
12
RubyGems
913
Rust
942
Swift
38
Unreviewed advisories
All unreviewed
5,000+

519 advisories

Loading
Untrusted search path in System Center allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-27743 was published Apr 8, 2025
Local privilege escalation due to a binary hijacking vulnerability. The following products are... Moderate Unreviewed
CVE-2025-30407 was published Mar 27, 2025
Mattermost Desktop App allows the bypass of Transparency, Consent, and Control (TCC) via code injection Low
CVE-2025-1398 was published for mattermost-desktop (npm) Mar 17, 2025
In JetBrains Runtime before 21.0.6b872.80 arbitrary dynamic library execution due to insecure... Moderate Unreviewed
CVE-2025-29903 was published Mar 12, 2025
Illustrator versions 29.2.1, 28.7.4 and earlier are affected by an Untrusted Search Path... High Unreviewed
CVE-2025-27167 was published Mar 11, 2025
A vulnerability was found in Blizzard Battle.Net up to 2.39.0.15212 on Windows and classified as... High Unreviewed
CVE-2025-1804 was published Mar 1, 2025
mongosh vulnerable to local privilege escalation High
CVE-2025-1756 was published for mongosh (npm) Feb 27, 2025
MongoDB Compass may be susceptible to local privilege escalation under certain conditions... High Unreviewed
CVE-2025-1755 was published Feb 27, 2025
There is an untrusted search path vulnerability in Esri ArcGIS AllSource 1.2 and 1.3 that may... High Unreviewed
CVE-2025-1068 was published Feb 25, 2025
A vulnerability was found in Kong Insomnia up to 10.3.0 and classified as critical. This issue... High Unreviewed
CVE-2025-1353 was published Feb 16, 2025
There is a defect in the CPython standard library module “mimetypes” where on Windows the default... Low Unreviewed
CVE-2024-3220 was published Feb 14, 2025
Local privilege escalation due to DLL hijacking vulnerability. The following products are... Moderate Unreviewed
CVE-2025-24828 was published Jan 31, 2025
Local privilege escalation due to DLL hijacking vulnerability. The following products are... Moderate Unreviewed
CVE-2025-24829 was published Jan 31, 2025
Local privilege escalation due to DLL hijacking vulnerability. The following products are... Moderate Unreviewed
CVE-2025-24827 was published Jan 31, 2025
Local privilege escalation due to DLL hijacking vulnerability. The following products are... Moderate Unreviewed
CVE-2025-24830 was published Jan 31, 2025
Untrusted search path in the installer for some Zoom Workplace Apps for Windows may allow an... Moderate Unreviewed
CVE-2025-0145 was published Jan 30, 2025
Snowflake JDBC allows an untrusted search path on Windows High
CVE-2025-24789 was published for net.snowflake:snowflake-jdbc (Maven) Jan 29, 2025
A vulnerability, which was classified as problematic, was found in Postman up to 11.20 on Windows... Low Unreviewed
CVE-2025-0733 was published Jan 27, 2025
A vulnerability, which was classified as problematic, has been found in Discord up to 1.0.9177 on... Low Unreviewed
CVE-2025-0732 was published Jan 27, 2025
A vulnerability was found in Rise Group Rise Mode Temp CPU 2.1. It has been classified as... High Unreviewed
CVE-2025-0707 was published Jan 24, 2025
A vulnerability has been found in obsproject OBS Studio up to 30.0.2 on Windows and classified as... Low Unreviewed
CVE-2024-13524 was published Jan 20, 2025
A vulnerability classified as problematic was found in Epic Games Launcher up to 17.2.1. This... Low Unreviewed
CVE-2025-0567 was published Jan 19, 2025
Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21399 was published Jan 17, 2025
An issue in termius before v.9.9.0 allows a local attacker to execute arbitrary code via a... Low Unreviewed
CVE-2024-55503 was published Jan 16, 2025
In Phiewer 4.1.0, a dylib injection leads to Command Execution which allow attackers to inject... Low Unreviewed
CVE-2024-53407 was published Jan 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database