Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,144
NuGet
735
pip
3,947
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

838 advisories

Loading
Uncontrolled search path for some Intel(R) QuickAssist Technology software before version 2.2.0... Moderate Unreviewed
CVE-2024-29223 was published Feb 13, 2025
Uncontrolled search path in some Intel(R) VPL software before version 2023.4.0 may allow an... Moderate Unreviewed
CVE-2024-21830 was published Feb 13, 2025
Uncontrolled search path in some Intel(R) Ethernet Adapter Complete Driver Pack install before... Moderate Unreviewed
CVE-2024-24852 was published Feb 13, 2025
A DLL hijacking vulnerability in AMD Integrated Management Technology (AIM-T) Manageability... High Unreviewed
CVE-2023-31361 was published Feb 11, 2025
Visual Studio Code Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-24039 was published Feb 11, 2025
Visual Studio Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21206 was published Feb 11, 2025
A vulnerability has been identified in ModelSim (All versions < V2025.1), Questa (All versions <... Moderate Unreviewed
CVE-2024-53977 was published Feb 11, 2025
Tally Prime Edit Log v2.1 was discovered to contain a DLL hijacking vulnerability via the... High Unreviewed
CVE-2024-48091 was published Feb 7, 2025
NetMod VPN Client 5.3.1 is vulnerable to DLL injection, allowing an attacker to execute arbitrary... High Unreviewed
CVE-2024-57426 was published Feb 6, 2025
A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to 2024 R1 (11.19.6.0)... High Unreviewed
CVE-2024-2658 was published Jan 30, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress Dev Kit ... High Unreviewed
CVE-2024-9496 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress 4 SDK ... High Unreviewed
CVE-2024-9497 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress SDK ... High Unreviewed
CVE-2024-9498 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress Win 98SE... High Unreviewed
CVE-2024-9499 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in Flash Programming Utility... High Unreviewed
CVE-2024-9492 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the CP210x VCP Windows ... High Unreviewed
CVE-2024-9495 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the  ToolStick ... High Unreviewed
CVE-2024-9493 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the  CP210 VCP Win 2k ... High Unreviewed
CVE-2024-9494 was published Jan 24, 2025
IBM Cognos Dashboards 4.0.7 and 5.0.0 on Cloud Pak for Data could allow a remote attacker to... High Unreviewed
CVE-2024-41739 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in Configuration Wizard 2... High Unreviewed
CVE-2024-9491 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in Silicon Labs (8-bit) IDE... High Unreviewed
CVE-2024-9490 was published Jan 24, 2025
A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via... High Unreviewed
CVE-2024-53588 was published Jan 24, 2025
Photoshop Desktop versions 25.12, 26.1 and earlier are affected by an Uncontrolled Search Path... High Unreviewed
CVE-2025-21127 was published Jan 14, 2025
Due to DLL injection vulnerability in SAPSetup, an attacker with either local user privileges or... High Unreviewed
CVE-2025-0069 was published Jan 14, 2025
Local privilege escalation due to DLL hijacking vulnerability. The following products are... High Unreviewed
CVE-2024-55543 was published Jan 2, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database