Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

176 advisories

Loading
In ControlUp Real-Time Agent before 8.6, an unquoted path can result in privilege escalation. An... High Unreviewed
CVE-2022-27905 was published Apr 28, 2022
Ivanti DSM Remote <= 6.3.1.1862 is vulnerable to an unquoted service path allowing local users to... High Unreviewed
CVE-2022-27088 was published Apr 12, 2022
In Fujitsu PlugFree Network <= 7.3.0.3, an Unquoted service path in PFNService.exe software... High Unreviewed
CVE-2022-27089 was published Apr 12, 2022
There is an unquoted service path in Sherpa Connector Service (SherpaConnectorService.exe) 2020.2... High Unreviewed
CVE-2022-23909 was published Apr 6, 2022
An Unquoted Service Path vulnerability exists in System Explorer 7.0.0 via via a specially... High Unreviewed
CVE-2021-43460 was published Apr 5, 2022
An Unquoted Service Path vulnerability exists in AnyTXT Searcher 1.2.394 via a specially crafted... High Unreviewed
CVE-2021-43454 was published Apr 5, 2022
An Unquoted Service Path vulnerability exists in FreeLAN 2.2 via a specially crafted file in the... High Unreviewed
CVE-2021-43455 was published Apr 5, 2022
An Unquoted Service Path vulnerability exists in bVPN 2.5.1 via a specially crafted file in the... High Unreviewed
CVE-2021-43457 was published Apr 5, 2022
An Unquoted Service Path vulnerability exits in Vembu BDR 4.2.0.1 via a specially crafted file in... High Unreviewed
CVE-2021-43458 was published Apr 5, 2022
An Unquoted Service Path vulnerablility exists in Rumble Mail Server 0.51.3135 via via a... High Unreviewed
CVE-2021-43456 was published Apr 5, 2022
An Unquoted Service Path vulnerability exists in Ext2Fsd v0.68 via a specially crafted file in... High Unreviewed
CVE-2021-43463 was published Apr 5, 2022
BitComet Service for Windows before version 1.8.6 contains an unquoted service path vulnerability... High Unreviewed
CVE-2022-27050 was published Apr 2, 2022
Xlpd v7.0.0094 and below contains a binary hijack vulnerability which allows attackers to execute... Moderate Unreviewed
CVE-2022-27965 was published Apr 2, 2022
Xmanager v7.0.0096 and below contains a binary hijack vulnerability which allows attackers to... Moderate Unreviewed
CVE-2022-27964 was published Apr 2, 2022
Xshell v7.0.0099 and below contains a binary hijack vulnerability which allows attackers to... Moderate Unreviewed
CVE-2022-27966 was published Apr 2, 2022
Xftp 7.0.0088p and below contains a binary hijack vulnerability which allows attackers to execute... Moderate Unreviewed
CVE-2022-27963 was published Apr 2, 2022
FreeFtpd version 1.0.13 and below contains an unquoted service path vulnerability which allows... High Unreviewed
CVE-2022-27052 was published Apr 2, 2022
Rapid7 Insight Agent versions 3.1.2.38 and earlier suffer from a privilege escalation... High Unreviewed
CVE-2022-0237 was published Mar 19, 2022
Remote Desktop Commander Suite Agent before v4.8 contains an unquoted service path which allows... High Unreviewed
CVE-2022-25031 was published Mar 4, 2022
Wordline HIDCCEMonitorSVC before v5.2.4.3 contains an unquoted service path which allows... High Unreviewed
CVE-2021-45819 was published Mar 4, 2022
TRIGONE Remote System Monitor 3.61 is vulnerable to an unquoted path service allowing local users... High Unreviewed
CVE-2021-46368 was published Feb 18, 2022
Multiple Mitsubishi Electric Factory Automation engineering software products have a malicious... Critical Unreviewed
CVE-2020-14521 was published Feb 12, 2022
A local unquoted search path security vulnerability has been identified in HPE Agentless... Moderate Unreviewed
CVE-2021-29218 was published Feb 10, 2022
A vulnerability has been identified in SICAM PQ Analyzer (All versions < V3.18). A service is... High Unreviewed
CVE-2021-45460 was published Jan 12, 2022
A local administrator could prevent the HMPA service from starting despite tamper protection... Moderate Unreviewed
CVE-2021-25269 was published Nov 27, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database