Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,170
Erlang
30
GitHub Actions
19
Go
1,981
Maven
5,000+
npm
3,700
NuGet
656
pip
3,319
Pub
11
RubyGems
882
Rust
832
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

398 advisories

Loading
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44175 was published Oct 28, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44264 was published Oct 28, 2024
This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and... Moderate Unreviewed
CVE-2024-44273 was published Oct 28, 2024
The Improper link resolution before file access ('Link Following') vulnerability in SonicWall... Moderate Unreviewed
CVE-2024-45315 was published Oct 11, 2024
Visual Studio Collector Service Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-43603 was published Oct 8, 2024
A vulnerability was found in Performance Co-Pilot (PCP). This flaw can only be exploited if an... Moderate Unreviewed
CVE-2024-45770 was published Sep 19, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44178 was published Sep 17, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 18 and... Moderate Unreviewed
CVE-2024-44131 was published Sep 17, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.1 contains a UNIX symbolic link (symlink)... Moderate Unreviewed
CVE-2024-39578 was published Aug 31, 2024
Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability... Moderate Unreviewed
CVE-2023-43078 was published Aug 28, 2024
Microsoft Windows Server Backup Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2024-38013 was published Jul 9, 2024
A vulnerability was found in GNU Nano that allows a possible privilege escalation through an... Moderate Unreviewed
CVE-2024-5742 was published Jun 12, 2024
Microsoft Azure File Sync Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2024-35253 was published Jun 11, 2024
Windows Container Manager Service Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2024-30076 was published Jun 11, 2024
Windows Themes Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-30065 was published Jun 11, 2024
A link following vulnerability in the Trend Micro Apex One and Apex One as a Service Damage... Moderate Unreviewed
CVE-2024-36306 was published Jun 11, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-27885 was published Jun 10, 2024
An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows... Moderate Unreviewed
CVE-2024-4712 was published May 14, 2024
An arbitrary file deletion vulnerability exists in PaperCut NG/MF that only affects Windows... Moderate Unreviewed
CVE-2024-3037 was published May 14, 2024
An issue was discovered in Samsung Magician 8.0.0 on macOS. Because symlinks are used during the... Moderate Unreviewed
CVE-2024-31952 was published May 14, 2024
NETGEAR RAX30 USB Share Link Following Information Disclosure Vulnerability. This vulnerability... Moderate Unreviewed
CVE-2023-34283 was published May 3, 2024
An Improper Link Resolution Before File Access ('Link Following') vulnerability in Zscaler Client... Moderate Unreviewed
CVE-2023-41971 was published May 2, 2024
Improper Link Resolution Before File Access ('Link Following') vulnerability in HYPR Workforce... Moderate Unreviewed
CVE-2024-0068 was published Feb 29, 2024
Microsoft Azure File Sync Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2024-21397 was published Feb 13, 2024
DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount... Moderate Unreviewed
CVE-2023-32454 was published Feb 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database