Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,411
Erlang
33
GitHub Actions
22
Go
2,146
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
899
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

725 advisories

Loading
A malicious DLL preload vulnerability in Fortinet FortiClient for Windows 6.2.0 and below allows... High Unreviewed
CVE-2019-6692 was published May 24, 2022
Trend Micro Anti-Threat Toolkit (ATTK) versions 1.62.0.1218 and below have a vulnerability that... High Unreviewed
CVE-2019-9491 was published May 24, 2022
A potential security vulnerability has been identified with certain versions of HP Touchpoint... High Unreviewed
CVE-2019-6333 was published May 24, 2022
The vulnerability is limited to the installers of Dell Encryption Enterprise versions prior to 10... High Unreviewed
CVE-2019-3745 was published May 24, 2022
JetBrains ReSharper installers for versions before 2019.2 had a DLL Hijacking vulnerability. High Unreviewed
CVE-2019-16407 was published May 24, 2022
An Uncontrolled Search Path Vulnerability is applicable to the following: Dell Update Package ... Moderate Unreviewed
CVE-2019-3726 was published May 24, 2022
Adobe application manager installer version 10.0 have an Insecure Library Loading (DLL hijacking)... High Unreviewed
CVE-2019-8076 was published May 24, 2022
Prior to 0.1, AIX builds of Eclipse OMR contain unused RPATHs which may facilitate code injection... High Unreviewed
CVE-2019-11773 was published May 24, 2022
IBM DB2 High Performance Unload load for LUW 6.1, 6.1.0.1, 6.1.0.1 IF1, 6.1.0.2, 6.1.0.2 IF1, and... High Unreviewed
CVE-2019-4447 was published May 24, 2022
DLL preloading vulnerability in versions 2017, 2018, 2019, and 2020 of Autodesk Advanced Steel,... High Unreviewed
CVE-2019-7364 was published May 24, 2022
Multiple binaries in IBM SDK, Java Technology Edition 7, 7R, and 8 on the AIX platform use... High Unreviewed
CVE-2019-4473 was published May 24, 2022
An issue was discovered in Bitdefender products for Windows (Bitdefender Endpoint Security Tool... High Unreviewed
CVE-2019-14242 was published May 24, 2022
A CWE-427: Uncontrolled Search Path Element vulnerability exists in ProClima (all versions prior... High Unreviewed
CVE-2019-6825 was published May 24, 2022
A vulnerability in the loading mechanism of specific dynamic link libraries in Cisco Jabber for... High Unreviewed
CVE-2019-1855 was published May 24, 2022
A non-privileged user or program can put code and a config file in a known non-privileged path ... High Unreviewed
CVE-2019-5443 was published May 24, 2022
PC-Doctor Toolbox before 7.3 has an Uncontrolled Search Path Element. High Unreviewed
CVE-2019-12280 was published May 24, 2022
HiSuite 9.1.0.300 versions and earlier contains a DLL hijacking vulnerability. This vulnerability... Moderate Unreviewed
CVE-2019-5245 was published May 24, 2022
Privilege escalation due to insecure directory permissions affecting ViveportDesktopService in... High Unreviewed
CVE-2019-12177 was published May 24, 2022
A Uncontrolled Search Path Element (CWE-427) vulnerability exists in VideoXpert OpsCenter... High Unreviewed
CVE-2018-7840 was published May 24, 2022
NVIDIA Windows GPU Display driver software for Windows (all versions) contains a vulnerability in... High Unreviewed
CVE-2019-5676 was published May 24, 2022
GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to place... High Unreviewed
CVE-2019-6564 was published May 24, 2022
GE Communicator, all versions prior to 4.0.517, allows an attacker to place malicious files... High Unreviewed
CVE-2019-6546 was published May 24, 2022
Quick Heal Total Security before 12.1.1.27 allows DLL hijacking during installation. High Unreviewed
CVE-2022-31467 was published May 24, 2022
ABB DataManagerPro 1.x before 1.7.1 allows local users to gain privileges by replacing a DLL file... High Unreviewed
CVE-2016-4526 was published May 17, 2022
An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3... High Unreviewed
CVE-2017-5161 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database