Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

195 advisories

Loading
Avira Security for Windows contains an unquoted service path which allows attackers with local... Moderate Unreviewed
CVE-2022-4429 was published Jan 10, 2023
Realtek Audio Drivers for Windows, as used on the Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS, and... High Unreviewed
CVE-2019-19705 was published Dec 26, 2022
Untrusted search path vulnerability in Baidunetdisk Version 7.4.3 and earlier allows an attacker... Moderate Unreviewed
CVE-2021-36631 was published Dec 22, 2022
Roxio Creator LJB starts another program with an unquoted file path. Since a registered Windows... Moderate Unreviewed
CVE-2022-46662 was published Dec 21, 2022
IOBit IOTransfer V4 is vulnerable to Unquoted Service Path. High Unreviewed
CVE-2022-37197 was published Nov 18, 2022
Unquoted search path in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers... High Unreviewed
CVE-2022-36384 was published Nov 11, 2022
Beijing Feishu Technology Co., Ltd Feishu v3.40.3 was discovered to contain an untrusted search... High Unreviewed
CVE-2021-3305 was published Oct 18, 2022
Dell GeoDrive, versions prior to 2.2, contains an Unquoted File Path vulnerability. A low... High Unreviewed
CVE-2022-33920 was published Oct 13, 2022
Panini Everest Engine 2.0.4 allows unprivileged users to create a file named Everest.exe in the ... High Unreviewed
CVE-2022-39959 was published Oct 8, 2022
In SAP Business One application when a service is created, the executable path contains spaces... High Unreviewed
CVE-2022-35292 was published Sep 14, 2022
Okta Active Directory Agent versions 3.8.0 through 3.11.0 installed the Okta AD Agent Update... High Unreviewed
CVE-2022-1697 was published Sep 7, 2022
An unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License'... Critical Unreviewed
CVE-2022-36344 was published Aug 17, 2022
There is an unquoted service path in ASUSTeK Aura Ready Game SDK service (GameSDK.exe) 1.0.0.4.... High Unreviewed
CVE-2022-35899 was published Jul 22, 2022
A vulnerability has been found in FileZilla Client 3.17.0.0 and classified as problematic. This... High Unreviewed
CVE-2016-15003 was published Jul 19, 2022
SAP BusinessObjects BW Publisher Service - versions 420, 430, uses a search path that contains an... High Unreviewed
CVE-2022-31591 was published Jul 13, 2022
Cloudflare Warp for Windows from version 2022.2.95.0 contained an unquoted service path which... High Unreviewed
CVE-2022-2147 was published Jun 24, 2022
SAP PowerDesigner Proxy - version 16.7, allows an attacker with low privileges and has local... High Unreviewed
CVE-2022-31590 was published Jun 15, 2022
Unquoted search path in the installer for the Intel(R) NUC M15 Laptop Kit Keyboard LED Service... High Unreviewed
CVE-2021-33095 was published May 24, 2022
There is an Unquoted Service Path in NI Service Locator (nisvcloc.exe) in versions prior to 18.0... High Unreviewed
CVE-2021-42563 was published May 24, 2022
As a result of an unquoted service path vulnerability present in the Kiwi Syslog Server... Moderate Unreviewed
CVE-2021-35231 was published May 24, 2022
In Akamai EAA (Enterprise Application Access) Client before 2.3.1, 2.4.x before 2.4.1, and 2.5.x... High Unreviewed
CVE-2021-40683 was published May 24, 2022
Unisys Stealth 5.1 before 5.1.025.0 and 6.0 before 6.0.055.0 has an unquoted Windows search path... Moderate Unreviewed
CVE-2021-35056 was published May 24, 2022
The Zscaler Client Connector prior to 2.1.2.150 did not quote the search path for services, which... High Unreviewed
CVE-2020-11632 was published May 24, 2022
The Lexmark Printer Software G2, G3 and G4 Installation Packages have a local escalation of... High Unreviewed
CVE-2021-35469 was published May 24, 2022
Unquoted service path in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow... High Unreviewed
CVE-2021-0112 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database