GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
315 advisories
Filter by severity
A format string vulnerability in the Zyxel ATP series firmware versions 5.10 through 5.36 Patch 2...
High
Unreviewed
CVE-2023-33011
was published
Jul 17, 2023
A use of externally-controlled format string in Fortinet FortiOS version 7.2.0 through 7.2.4,...
High
Unreviewed
CVE-2022-43953
was published
Jun 13, 2023
On Triangle MicroWorks' SCADA Data Gateway version <= v5.01.03, an unauthenticated attacker can...
Critical
Unreviewed
CVE-2023-2186
was published
Jun 7, 2023
Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May...
High
Unreviewed
CVE-2023-21497
was published
May 4, 2023
A format string vulnerability in a binary of the Zyxel NBG-418N v2 firmware versions prior to V1...
Moderate
Unreviewed
CVE-2023-22923
was published
May 1, 2023
A valid, authenticated user may be able to trigger a denial of service of the XCC web user...
High
Unreviewed
CVE-2023-25492
was published
May 1, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected...
Moderate
Unreviewed
CVE-2022-43619
was published
Mar 29, 2023
A vulnerability, which was classified as critical, was found in ayttm up to 0.5.0.89. This...
Critical
Unreviewed
CVE-2015-10088
was published
Mar 5, 2023
A use of externally-controlled format string in Fortinet FortiWeb version 7.0.0 through 7.0.1,...
High
Unreviewed
CVE-2023-23783
was published
Feb 16, 2023
IBM Spectrum Scale (5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1) and IBM Elastic Storage...
Moderate
Unreviewed
CVE-2022-43869
was published
Feb 12, 2023
Use of Externally-Controlled Format String vulnerabilities in STST TA prior to SMR Jan-2023...
High
Unreviewed
CVE-2023-21420
was published
Feb 9, 2023
In BIG-IP starting in versions 17.0.0, 16.1.2.2, 15.1.5.1, 14.1.4.6, and 13.1.5 on their...
Critical
Unreviewed
CVE-2023-22374
was published
Feb 1, 2023
A vulnerability was found in intgr uqm-wasm. It has been classified as critical. This affects the...
Critical
Unreviewed
CVE-2020-36643
was published
Jan 6, 2023
A vulnerability, which was classified as critical, has been found in sslh. This issue affects the...
Critical
Unreviewed
CVE-2022-4639
was published
Dec 22, 2022
A vulnerability was found in multimon-ng. It has been rated as critical. This issue affects the...
Critical
Unreviewed
CVE-2020-36619
was published
Dec 19, 2022
Crash in the USB HID protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via...
High
Unreviewed
CVE-2022-3724
was published
Dec 9, 2022
TiDB vulnerable to Use of Externally-Controlled Format String
Critical
CVE-2022-3023
was published
for
github.com/pingcap/tidb
(Go)
Nov 4, 2022
Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode...
Critical
Unreviewed
CVE-2022-35874
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode...
Critical
Unreviewed
CVE-2022-35875
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect...
High
Unreviewed
CVE-2022-35885
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect...
High
Unreviewed
CVE-2022-35884
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode...
High
Unreviewed
CVE-2022-35880
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect...
High
Unreviewed
CVE-2022-35886
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode...
High
Unreviewed
CVE-2022-35878
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode...
High
Unreviewed
CVE-2022-35879
was published
Oct 25, 2022
ProTip!
Advisories are also available from the
GraphQL API