Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,109
Maven
5,000+
npm
3,765
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
887
Swift
37
Unreviewed advisories
All unreviewed
5,000+

179 advisories

Loading
Cloudflare Warp for Windows from version 2022.2.95.0 contained an unquoted service path which... High Unreviewed
CVE-2022-2147 was published Jun 24, 2022
SAP PowerDesigner Proxy - version 16.7, allows an attacker with low privileges and has local... High Unreviewed
CVE-2022-31590 was published Jun 15, 2022
Unquoted search path in the installer for the Intel(R) NUC M15 Laptop Kit Keyboard LED Service... High Unreviewed
CVE-2021-33095 was published May 24, 2022
There is an Unquoted Service Path in NI Service Locator (nisvcloc.exe) in versions prior to 18.0... High Unreviewed
CVE-2021-42563 was published May 24, 2022
As a result of an unquoted service path vulnerability present in the Kiwi Syslog Server... Moderate Unreviewed
CVE-2021-35231 was published May 24, 2022
In Akamai EAA (Enterprise Application Access) Client before 2.3.1, 2.4.x before 2.4.1, and 2.5.x... High Unreviewed
CVE-2021-40683 was published May 24, 2022
Unisys Stealth 5.1 before 5.1.025.0 and 6.0 before 6.0.055.0 has an unquoted Windows search path... Moderate Unreviewed
CVE-2021-35056 was published May 24, 2022
The Zscaler Client Connector prior to 2.1.2.150 did not quote the search path for services, which... High Unreviewed
CVE-2020-11632 was published May 24, 2022
The Lexmark Printer Software G2, G3 and G4 Installation Packages have a local escalation of... High Unreviewed
CVE-2021-35469 was published May 24, 2022
Unquoted service path in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow... High Unreviewed
CVE-2021-0112 was published May 24, 2022
In Windscribe v1.83 Build 20, 'WindscribeService' has an Unquoted Service Path that facilitates... High Unreviewed
CVE-2020-22809 was published May 24, 2022
Aviatrix VPN Client before 2.14.14 on Windows has an unquoted search path that enables local... High Unreviewed
CVE-2021-31776 was published May 24, 2022
An issue was discovered in the CheckUser extension for MediaWiki through 1.35.2. MediaWiki... Moderate Unreviewed
CVE-2021-31553 was published May 24, 2022
An unquoted service path in SAPSetup, version - 9.0, could lead to privilege escalation during... High Unreviewed
CVE-2021-27608 was published May 24, 2022
Unquoted service path vulnerability in McAfee Endpoint Product Removal (EPR) Tool prior to 21.2... High Unreviewed
CVE-2021-23879 was published May 24, 2022
SonicWall NetExtender Windows client vulnerable to unquoted service path vulnerability, this... Moderate Unreviewed
CVE-2020-5147 was published May 24, 2022
The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing ... High Unreviewed
CVE-2020-27645 was published May 24, 2022
The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing ... High Unreviewed
CVE-2020-27644 was published May 24, 2022
A CWE-428 Windows Unquoted Search Path vulnerability exists in EcoStruxure Building Operation... High Unreviewed
CVE-2020-28209 was published May 24, 2022
Unquoted service executable path in McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020... High Unreviewed
CVE-2020-7331 was published May 24, 2022
Dr.Fone 3.0.0 allows local users to gain privileges via a Trojan horse DriverInstall.exe because ... High Unreviewed
CVE-2020-27992 was published May 24, 2022
TeamViewer Desktop for Windows before 15.8.3 does not properly quote its custom URI handlers. A... Moderate Unreviewed
CVE-2020-13699 was published May 24, 2022
A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2),... High Unreviewed
CVE-2020-7581 was published May 24, 2022
Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious... Moderate Unreviewed
CVE-2020-14049 was published May 24, 2022
A vulnerability has been identified in SIMATIC Automation Tool (All versions), SIMATIC NET PC... High Unreviewed
CVE-2020-7580 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database