GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
176 advisories
Filter by severity
A vulnerability has been found in the CPython `venv` module and CLI where path names provided...
Moderate
Unreviewed
CVE-2024-9287
was published
Oct 22, 2024
Unquoted search path or element in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before...
Moderate
Unreviewed
CVE-2023-24542
was published
Oct 10, 2024
A vulnerability classified as critical has been found in Intelbras InControl up to 2.21.56. This...
High
Unreviewed
CVE-2024-9325
was published
Sep 29, 2024
Grafana Alloy on Windows has Unquoted Search Path or Element vulnerability
Moderate
CVE-2024-8975
was published
for
github.com/grafana/alloy
(Go)
Sep 25, 2024
Grafana Agent (Flow mode) on Windows has Unquoted Search Path or Element vulnerability
Moderate
CVE-2024-8996
was published
for
github.com/grafana/agent
(Go)
Sep 25, 2024
Windows Setup and Deployment Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43457
was published
Sep 10, 2024
An unquoted search path or element vulnerability has been reported to affect QVR Smart Client. If...
Moderate
Unreviewed
CVE-2022-27592
was published
Sep 6, 2024
Unquoted Executable Path vulnerability in Hitachi Device Manager on Windows (Device Manager...
Moderate
Unreviewed
CVE-2024-5963
was published
Aug 6, 2024
A “CWE-428: Unquoted Search Path or Element” affects the ThermoscanIP_Scrutation service. Such...
Moderate
Unreviewed
CVE-2024-31201
was published
Jul 31, 2024
Unquoted Search Path or Element vulnerability in ABB Mint Workbench.
A local attacker who...
Moderate
Unreviewed
CVE-2024-5402
was published
Jul 15, 2024
A vulnerability classified as critical was found in Intelbras InControl 2.21.56. This...
High
Unreviewed
CVE-2024-6080
was published
Jun 18, 2024
CWE-428: Unquoted search path or element vulnerability exists in Easergy Studio, which could...
High
Unreviewed
CVE-2024-2747
was published
Jun 12, 2024
An unquoted executable path exists in the Rockwell Automation FactoryTalk® Remote Access™...
Unknown
Unreviewed
CVE-2024-3640
was published
May 16, 2024
Unquoted path or search item vulnerability in SugarSync versions prior to 4.1.3 for Windows. This...
High
Unreviewed
CVE-2024-4461
was published
May 3, 2024
Triangle MicroWorks SCADA Data Gateway GTWWebMonitorService Unquoted Search Path Remote Code...
High
Unreviewed
CVE-2023-39464
was published
May 3, 2024
Local privilege escalation due to unquoted search path vulnerability. The following products are...
High
Unreviewed
CVE-2024-34010
was published
Apr 29, 2024
An unquoted service path vulnerability in Terratec DMX_6Fire USB v.1.23.0.02 allows a local...
Low
Unreviewed
CVE-2024-31804
was published
Apr 23, 2024
Unquoted Search Path or Element vulnerability in Logitech MEVO WEBCAM APP on Windows allows Local...
Moderate
Unreviewed
CVE-2024-4031
was published
Apr 23, 2024
A potential security vulnerability has been identified in VSS Provider and CAPI Proxy software...
High
Unreviewed
CVE-2024-22437
was published
Apr 15, 2024
A search path or unquoted item vulnerability in Faronics Deep Freeze Server Standard, which...
High
Unreviewed
CVE-2024-1618
was published
Mar 12, 2024
A local attacker can gain administrative privileges by inserting an executable file in the path...
High
Unreviewed
CVE-2024-25552
was published
Mar 1, 2024
Search path or unquoted item vulnerability in HDD Health affecting versions 4.2.0.112 and earlier...
High
Unreviewed
CVE-2024-1201
was published
Feb 2, 2024
Unquoted Search Path or Element vulnerability in B&R Industrial Automation Automation Studio, B&R...
High
Unreviewed
CVE-2020-24682
was published
Feb 2, 2024
Unquoted service path in ESET products allows to
drop a prepared program to a specific location...
Low
Unreviewed
CVE-2023-7043
was published
Jan 31, 2024
PowerSYSTEM Center versions 2020 Update 16 and prior contain a vulnerability that may allow an...
High
Unreviewed
CVE-2023-6631
was published
Jan 8, 2024
ProTip!
Advisories are also available from the
GraphQL API