GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
129 advisories
Filter by severity
gix-path can use a fake program files location
Moderate
CVE-2024-40644
was published
for
gix-path
(Rust)
Jul 18, 2024
A vulnerability has been found in Mp3tag up to 3.26d and classified as problematic. This...
Moderate
Unreviewed
CVE-2024-7193
was published
Jul 29, 2024
Uncontrolled search path for some Intel(R) VROC software before version 8.6.0.1191 may allow an...
Moderate
Unreviewed
CVE-2024-23489
was published
Aug 14, 2024
Uncontrolled search path in some Intel(R) Distribution for GDB software before version 2024.0.1...
Moderate
Unreviewed
CVE-2024-23491
was published
Aug 14, 2024
Uncontrolled search path for some Intel(R) License Manager for FLEXlm product software before...
Moderate
Unreviewed
CVE-2024-24977
was published
Aug 14, 2024
Uncontrolled search path for some Intel(R) Simics Package Manager software before version 1.8.3...
Moderate
Unreviewed
CVE-2024-26027
was published
Aug 14, 2024
Uncontrolled search path for some Intel(R) MPI Library software before version 2021.12 may allow...
Moderate
Unreviewed
CVE-2024-28876
was published
Aug 14, 2024
Uncontrolled search path for some Intel(R) Trace Analyzer and Collector software before version...
Moderate
Unreviewed
CVE-2024-28172
was published
Aug 14, 2024
Uncontrolled search path in some Intel(R) GPA software before version 2024.1 may allow an...
Moderate
Unreviewed
CVE-2024-28046
was published
Aug 14, 2024
Uncontrolled search path for some Intel(R) IPP Cryptography software before version 2021.11 may...
Moderate
Unreviewed
CVE-2024-21784
was published
Aug 14, 2024
Uncontrolled search path for some Intel(R) Quartus(R) Prime Pro Edition Design Software before...
Moderate
Unreviewed
CVE-2024-22184
was published
Aug 14, 2024
Uncontrolled search path for some Intel(R) oneAPI Math Kernel Library software before version...
Moderate
Unreviewed
CVE-2024-21766
was published
Aug 14, 2024
Uncontrolled search path in some Intel(R) Ethernet Connection I219-LM install software may allow...
Moderate
Unreviewed
CVE-2024-21769
was published
Aug 14, 2024
Uncontrolled search path element in some installation software for Intel(R) Ethernet Adapter...
Moderate
Unreviewed
CVE-2024-22376
was published
Aug 14, 2024
Uncontrolled search path for some Intel(R) oneAPI Compiler software before version 2024.1 may...
Moderate
Unreviewed
CVE-2024-21857
was published
Aug 14, 2024
Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version...
Moderate
Unreviewed
CVE-2024-23907
was published
Aug 14, 2024
Uncontrolled search path in some Intel(R) VTune(TM) Profiler software before versions 2024.1 may...
Moderate
Unreviewed
CVE-2024-29015
was published
Aug 14, 2024
Uncontrolled search path in some Intel(R) IPP software before version 2021.11 may allow an...
Moderate
Unreviewed
CVE-2024-28887
was published
Aug 14, 2024
Uncontrolled search path in some Intel(R) FPGA SDK for OpenCL(TM) software technology may allow...
Moderate
Unreviewed
CVE-2024-23909
was published
Aug 14, 2024
Uncontrolled search path in some EMON software before version 11.44 may allow an authenticated...
Moderate
Unreviewed
CVE-2024-28953
was published
Aug 14, 2024
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or...
Moderate
Unreviewed
CVE-2023-49114
was published
Feb 26, 2024
Okta Verify for Windows is vulnerable to privilege escalation through DLL hijacking. The...
Moderate
Unreviewed
CVE-2024-7061
was published
Aug 7, 2024
Local privilege escalation due to DLL hijacking vulnerability. The following products are...
Moderate
Unreviewed
CVE-2024-34017
was published
Aug 29, 2024
Local privilege escalation due to DLL hijacking vulnerability. The following products are...
Moderate
Unreviewed
CVE-2024-34019
was published
Aug 29, 2024
An uncontrolled search path in the agent of Ivanti EPM before 2022 SU6, or the 2024 September...
Moderate
Unreviewed
CVE-2024-8441
was published
Sep 10, 2024
ProTip!
Advisories are also available from the
GraphQL API