Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,140
Maven
5,000+
npm
3,800
NuGet
687
pip
3,478
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

533 advisories

Loading
IBM i 7.2, 7.3, 7.4, and 7.5 could allow a user with the capability to compile or restore a... High Unreviewed
CVE-2024-55898 was published Feb 24, 2025
Trend Micro HouseCall for Home Networks version 5.3.1302 and below contains an uncontrolled... High Unreviewed
CVE-2022-28339 was published Feb 22, 2025
Insecure Loading of Dynamic Link Libraries have been discovered in USB-CONVERTERCABLE DRIVER,... High Unreviewed
CVE-2024-57963 was published Feb 18, 2025
Insecure Loading of Dynamic Link Libraries have been discovered in HVAC Energy Saving Program,... High Unreviewed
CVE-2024-57964 was published Feb 18, 2025
A DLL hijacking vulnerability in AMD Integrated Management Technology (AIM-T) Manageability... High Unreviewed
CVE-2023-31361 was published Feb 11, 2025
Visual Studio Code Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-24039 was published Feb 11, 2025
Visual Studio Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21206 was published Feb 11, 2025
Tally Prime Edit Log v2.1 was discovered to contain a DLL hijacking vulnerability via the... High Unreviewed
CVE-2024-48091 was published Feb 7, 2025
NetMod VPN Client 5.3.1 is vulnerable to DLL injection, allowing an attacker to execute arbitrary... High Unreviewed
CVE-2024-57426 was published Feb 6, 2025
A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to 2024 R1 (11.19.6.0)... High Unreviewed
CVE-2024-2658 was published Jan 30, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress Dev Kit ... High Unreviewed
CVE-2024-9496 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress SDK ... High Unreviewed
CVE-2024-9498 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress Win 98SE... High Unreviewed
CVE-2024-9499 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress 4 SDK ... High Unreviewed
CVE-2024-9497 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in Flash Programming Utility... High Unreviewed
CVE-2024-9492 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the  CP210 VCP Win 2k ... High Unreviewed
CVE-2024-9494 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the CP210x VCP Windows ... High Unreviewed
CVE-2024-9495 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the  ToolStick ... High Unreviewed
CVE-2024-9493 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in Configuration Wizard 2... High Unreviewed
CVE-2024-9491 was published Jan 24, 2025
DLL hijacking vulnerabilities, caused by an uncontrolled search path in Silicon Labs (8-bit) IDE... High Unreviewed
CVE-2024-9490 was published Jan 24, 2025
IBM Cognos Dashboards 4.0.7 and 5.0.0 on Cloud Pak for Data could allow a remote attacker to... High Unreviewed
CVE-2024-41739 was published Jan 24, 2025
A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via... High Unreviewed
CVE-2024-53588 was published Jan 24, 2025
Photoshop Desktop versions 25.12, 26.1 and earlier are affected by an Uncontrolled Search Path... High Unreviewed
CVE-2025-21127 was published Jan 14, 2025
Due to DLL injection vulnerability in SAPSetup, an attacker with either local user privileges or... High Unreviewed
CVE-2025-0069 was published Jan 14, 2025
Local privilege escalation due to DLL hijacking vulnerability. The following products are... High Unreviewed
CVE-2024-55543 was published Jan 2, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database