Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

838 advisories

Loading
A potential DLL hijacking vulnerability was discovered in Lenovo Browser during an internal... High Unreviewed
CVE-2025-9201 was published Sep 11, 2025
DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0... High Unreviewed
CVE-2025-10214 was published Sep 10, 2025
DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0... High Unreviewed
CVE-2025-10213 was published Sep 10, 2025
DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0... High Unreviewed
CVE-2025-10215 was published Sep 10, 2025
DLL search order hijacking vulnerability in the wave.exe executable for Windows 11, version 1.27... High Unreviewed
CVE-2025-40979 was published Sep 10, 2025
Sunshine for Windows, version v2025.122.141614, contains a DLL search-order hijacking... High Unreviewed
CVE-2025-10198 was published Sep 9, 2025
TkEasyGUI Affected by Uncontrolled Search Path Element Issue High
CVE-2025-55671 was published for TkEasyGUI (pip) Sep 5, 2025
NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2025-8614 was published Sep 2, 2025
Foxit PDF Reader Update Service Uncontrolled Search Path Element Local Privilege Escalation... High Unreviewed
CVE-2025-9330 was published Sep 2, 2025
Substance3D - Modeler versions 1.22.0 and earlier are affected by an Uncontrolled Search Path... High Unreviewed
CVE-2025-49571 was published Aug 12, 2025
Uncontrolled search path in some Intel(R) AI for Enterprise Retrieval-augmented Generation... Moderate Unreviewed
CVE-2025-24923 was published Aug 12, 2025
Uncontrolled search path for some Intel(R) DSA software before version 25.2.15.9 may allow an... Moderate Unreviewed
CVE-2025-26404 was published Aug 12, 2025
Uncontrolled search path for some Intel(R) Graphics Driver software may allow an authenticated... Moderate Unreviewed
CVE-2025-27717 was published Aug 12, 2025
Uncontrolled search path for some Intel(R) RealSense(TM) Dynamic Calibrator software before... Moderate Unreviewed
CVE-2025-22838 was published Aug 12, 2025
Uncontrolled search path element for some Intel(R) Driver & Support Assistant Tool software... Moderate Unreviewed
CVE-2025-21093 was published Aug 12, 2025
Uncontrolled search path for some Intel(R) oneAPI DPC++/C++ Compiler software before version 2025... Moderate Unreviewed
CVE-2025-20627 was published Aug 12, 2025
Uncontrolled search path for the Intel(R) Trace Analyzer and Collector software all verions may... Moderate Unreviewed
CVE-2025-20048 was published Aug 12, 2025
Uncontrolled search path for some Clock Jitter Tool software before version 6.0.1 may allow an... Moderate Unreviewed
CVE-2025-20092 was published Aug 12, 2025
Uncontrolled search path for some Intel(R) oneAPI Toolkit and component software installers may... Moderate Unreviewed
CVE-2025-20017 was published Aug 12, 2025
The affected setup component is vulnerable to DLL hijacking. This could allow an attacker to... High Unreviewed
CVE-2025-30033 was published Aug 12, 2025
Paramount Macrium Reflect through 2025-06-26 allows local attackers to execute arbitrary code... High Unreviewed
CVE-2025-53395 was published Aug 4, 2025
Paramount Macrium Reflect through 2025-06-26 allows attackers to execute arbitrary code with... High Unreviewed
CVE-2025-53394 was published Aug 4, 2025
An uncontrolled search path element vulnerability can lead to local privilege Escalation (LPE)... High Unreviewed
CVE-2025-0712 was published Jul 30, 2025
An uncontrolled search path element vulnerability can lead to local privilege Escalation (LPE)... High Unreviewed
CVE-2025-25011 was published Jul 30, 2025
DLL hijacking of all PE32 executables when run on Windows for ARM64 CPU architecture. This allows... Moderate Unreviewed
CVE-2025-7676 was published Jul 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database