GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
394 advisories
Filter by severity
Visual Studio Collector Service Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2024-43603
was published
Oct 8, 2024
A vulnerability was found in Performance Co-Pilot (PCP). This flaw can only be exploited if an...
Moderate
Unreviewed
CVE-2024-45770
was published
Sep 19, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS...
Moderate
Unreviewed
CVE-2024-44178
was published
Sep 17, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 18 and...
Moderate
Unreviewed
CVE-2024-44131
was published
Sep 17, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.1 contains a UNIX symbolic link (symlink)...
Moderate
Unreviewed
CVE-2024-39578
was published
Aug 31, 2024
Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability...
Moderate
Unreviewed
CVE-2023-43078
was published
Aug 28, 2024
Microsoft Windows Server Backup Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2024-38013
was published
Jul 9, 2024
A vulnerability was found in GNU Nano that allows a possible privilege escalation through an...
Moderate
Unreviewed
CVE-2024-5742
was published
Jun 12, 2024
Microsoft Azure File Sync Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2024-35253
was published
Jun 11, 2024
Windows Container Manager Service Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2024-30076
was published
Jun 11, 2024
Windows Themes Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2024-30065
was published
Jun 11, 2024
A link following vulnerability in the Trend Micro Apex One and Apex One as a Service Damage...
Moderate
Unreviewed
CVE-2024-36306
was published
Jun 11, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS...
Moderate
Unreviewed
CVE-2024-27885
was published
Jun 10, 2024
An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows...
Moderate
Unreviewed
CVE-2024-4712
was published
May 14, 2024
An arbitrary file deletion vulnerability exists in PaperCut NG/MF that only affects Windows...
Moderate
Unreviewed
CVE-2024-3037
was published
May 14, 2024
An issue was discovered in Samsung Magician 8.0.0 on macOS. Because symlinks are used during the...
Moderate
Unreviewed
CVE-2024-31952
was published
May 14, 2024
NETGEAR RAX30 USB Share Link Following Information Disclosure Vulnerability. This vulnerability...
Moderate
Unreviewed
CVE-2023-34283
was published
May 3, 2024
An Improper Link Resolution Before File Access ('Link Following') vulnerability in Zscaler Client...
Moderate
Unreviewed
CVE-2023-41971
was published
May 2, 2024
Improper Link Resolution Before File Access ('Link Following') vulnerability in HYPR Workforce...
Moderate
Unreviewed
CVE-2024-0068
was published
Feb 29, 2024
Microsoft Azure File Sync Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2024-21397
was published
Feb 13, 2024
Dell Display Manager application, version 2.1.1.17 and prior, contain an insecure operation on...
Moderate
Unreviewed
CVE-2023-32474
was published
Feb 6, 2024
DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount...
Moderate
Unreviewed
CVE-2023-32454
was published
Feb 6, 2024
Improper Link Resolution Before File Access ('Link Following') vulnerability in HYPR Workforce...
Moderate
Unreviewed
CVE-2023-6335
was published
Jan 16, 2024
Improper link resolution before file access ('Link Following') issue exists in iPrint&Scan...
Moderate
Unreviewed
CVE-2023-51654
was published
Dec 26, 2023
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers to read registry...
Moderate
Unreviewed
CVE-2023-28871
was published
Dec 9, 2023
ProTip!
Advisories are also available from the
GraphQL API