Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

523 advisories

Loading
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the  CP210 VCP Win 2k ... High Unreviewed
CVE-2024-9494 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the CP210x VCP Windows ... High Unreviewed
CVE-2024-9495 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in Flash Programming Utility... High Unreviewed
CVE-2024-9492 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress Dev Kit ... High Unreviewed
CVE-2024-9496 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress SDK ... High Unreviewed
CVE-2024-9498 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the  ToolStick ... High Unreviewed
CVE-2024-9493 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress Win 98SE... High Unreviewed
CVE-2024-9499 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress 4 SDK ... High Unreviewed
CVE-2024-9497 was published Jan 24, 2025
IBM Cognos Dashboards 4.0.7 and 5.0.0 on Cloud Pak for Data could allow a remote attacker to... High Unreviewed
CVE-2024-41739 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in Configuration Wizard 2... High Unreviewed
CVE-2024-9491 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in Silicon Labs (8-bit) IDE... High Unreviewed
CVE-2024-9490 was published Jan 24, 2025
A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via... High Unreviewed
CVE-2024-53588 was published Jan 24, 2025
Photoshop Desktop versions 25.12, 26.1 and earlier are affected by an Uncontrolled Search Path... High Unreviewed
CVE-2025-21127 was published Jan 14, 2025
Due to DLL injection vulnerability in SAPSetup, an attacker with either local user privileges or... High Unreviewed
CVE-2025-0069 was published Jan 14, 2025
Local privilege escalation due to DLL hijacking vulnerability. The following products are... High Unreviewed
CVE-2024-55543 was published Jan 2, 2025
An insecure library loading vulnerability has been reported to affect QVPN Device Client. If... High Unreviewed
CVE-2022-27595 was published Dec 19, 2024
Uncontrolled Search Path Element vulnerability in ICONICS GENESIS64 all versions, Mitsubishi... High Unreviewed
CVE-2024-8299 was published Nov 29, 2024
Uncontrolled Search Path Element vulnerability in ICONICS GENESIS64 all versions, Mitsubishi... High Unreviewed
CVE-2024-9852 was published Nov 29, 2024
Panda Security Dome VPN DLL Hijacking Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2024-7244 was published Nov 23, 2024
NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2024-7253 was published Nov 23, 2024
Famatech Advanced IP Scanner Uncontrolled Search Path Element Local Privilege Escalation... High Unreviewed
CVE-2024-30376 was published Nov 22, 2024
Qualys discovered that needrestart, before version 3.8, allows local attackers to execute... High Unreviewed
CVE-2024-48990 was published Nov 19, 2024
Qualys discovered that needrestart, before version 3.8, allows local attackers to execute... High Unreviewed
CVE-2024-48992 was published Nov 19, 2024
Potential vulnerabilities have been identified in the audio package for certain HP PC products... High Unreviewed
CVE-2024-2208 was published Nov 12, 2024
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 9). The... High Unreviewed
CVE-2024-47942 was published Nov 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database