Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,826
Erlang
36
GitHub Actions
32
Go
2,426
Maven
5,000+
npm
4,058
NuGet
723
pip
3,848
Pub
12
RubyGems
934
Rust
1,006
Swift
38
Unreviewed advisories
All unreviewed
5,000+

205 advisories

Loading
When the Windows DLL "webauthn.dll" was missing from the Operating System, and a malicious one... Moderate Unreviewed
CVE-2020-12423 was published May 24, 2022
Acrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x... Moderate Unreviewed
CVE-2022-28247 was published May 12, 2022
DLL injection vulnerability in software installer for Intel Data Center Migration Center Software... Moderate Unreviewed
CVE-2018-12160 was published May 13, 2022
Norton Utilities (prior to 16.0.3.44) may be susceptible to a DLL Preloading vulnerability, which... Moderate Unreviewed
CVE-2018-5235 was published May 13, 2022
DLL hijacking could lead to denial of service. The following products are affected: Acronis Cyber... Moderate Unreviewed
CVE-2021-44199 was published Nov 30, 2021
A vulnerability in the search path processing of Cisco Directory Connector could allow an... Moderate Unreviewed
CVE-2019-1794 was published May 13, 2022
A vulnerability in the DLL loading component of Cisco Advanced Malware Protection (AMP) for... Moderate Unreviewed
CVE-2018-15452 was published May 13, 2022
An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to... Moderate Unreviewed
CVE-2017-5147 was published May 13, 2022
A vulnerability in the routine that loads DLL files in Cisco Meeting App for Windows could allow... Moderate Unreviewed
CVE-2017-12266 was published May 13, 2022
A DLL injection vulnerability in the Intel IoT Developers Kit 4.0 installer may allow an... Moderate Unreviewed
CVE-2018-12163 was published May 13, 2022
IBM i Access Family 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.0 could allow a local... Moderate Unreviewed
CVE-2022-40746 was published Nov 21, 2022
An installer search patch element vulnerability in Trend Micro Portable Security 3.0 Pro, 3.0 and... Moderate Unreviewed
CVE-2022-26319 was published Mar 9, 2022
On versions beginning in 7.1.5 to before 7.2.3.1, a DLL hijacking vulnerability exists in the BIG... Moderate Unreviewed
CVE-2023-22283 was published Feb 1, 2023
DLL Search Order Hijacking vulnerability in McAfee Agent (MA) prior to 5.6.4 allows attackers... Moderate Unreviewed
CVE-2019-3613 was published May 24, 2022
An issue in the Trend Micro Apex One agent could allow an attacker who has previously acquired... Moderate Unreviewed
CVE-2023-25147 was published Mar 10, 2023
McAfee Total Protection prior to 16.0.49 allows attackers to elevate user privileges due to DLL... Moderate Unreviewed
CVE-2023-24578 was published Mar 13, 2023
An issue was discovered in Acuant AcuFill SDK before 10.22.02.03. During SDK repair, certutil.exe... Moderate Unreviewed
CVE-2022-48223 was published Apr 4, 2023
SAP HCM Fiori App My Forms (Fiori 2.0) - version 605, does not perform necessary authorization... Moderate Unreviewed
CVE-2023-1903 was published Apr 11, 2023
An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.... Moderate Unreviewed
CVE-2020-24578 was published May 24, 2022
A cryptographic vulnerability exists on Node.js on linux in versions of 18.x prior to 18.40.0... Moderate Unreviewed
CVE-2022-32222 was published Jul 15, 2022
Razer Synapse before 3.7.0830.081906 allows privilege escalation due to an unsafe installation... Moderate Unreviewed
CVE-2022-47632 was published Jan 27, 2023
Local privilege escalation due to DLL hijacking vulnerability. The following products are... Moderate Unreviewed
CVE-2023-45248 was published Oct 9, 2023
General Electric MiCOM S1 Agile is vulnerable to an attacker achieving code execution by placing... Moderate Unreviewed
CVE-2023-0898 was published Nov 7, 2023
Local privilege escalation due to a DLL hijacking vulnerability. The following products are... Moderate Unreviewed
CVE-2023-2355 was published Apr 27, 2023
Uncontrolled search path in some Intel(R) NUC Kit NUC6i7KYK Thunderbolt(TM) 3 Firmware Update... Moderate Unreviewed
CVE-2023-32660 was published Nov 14, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database