GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,992
Erlang
29
GitHub Actions
16
Go
1,782
Maven
5,000+
npm
3,544
NuGet
619
pip
3,134
Pub
10
RubyGems
838
Rust
795
Swift
34
Unreviewed advisories
All unreviewed
5,000+
315 advisories
Filter by severity
Apache log4net format string vulnerability causes DoS
Moderate
CVE-2006-0743
was published
for
log4net
(NuGet)
May 1, 2022
A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7...
Critical
Unreviewed
CVE-2024-23113
was published
Feb 15, 2024
A format string vulnerability in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch...
Moderate
Unreviewed
CVE-2023-6399
was published
Feb 20, 2024
A format string vulnerability in a function of the IPSec VPN feature in Zyxel ATP...
High
Unreviewed
CVE-2023-6764
was published
Feb 20, 2024
A use of externally-controlled format string in Fortinet FortiOS 7.2.0 through 7.2.4, 7.0.0...
High
Unreviewed
CVE-2023-29181
was published
Feb 22, 2024
A vulnerability, which was classified as critical, was found in ayttm up to 0.5.0.89. This...
Critical
Unreviewed
CVE-2015-10088
was published
Mar 5, 2023
Apache Airflow vulnerable to Use of Externally-Controlled Format String
High
CVE-2022-40604
was published
for
apache-airflow
(pip)
Sep 22, 2022
A use of externally-controlled format string vulnerability [CWE-134] in Fortinet FortiManager...
Moderate
Unreviewed
CVE-2023-41842
was published
Mar 12, 2024
It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API....
High
Unreviewed
CVE-2023-39240
was published
Sep 7, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This...
High
Unreviewed
CVE-2023-39239
was published
Sep 7, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused...
High
Unreviewed
CVE-2023-39238
was published
Sep 7, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This...
High
Unreviewed
CVE-2023-35086
was published
Jul 21, 2023
** DISPUTED ** In Tcl 8.6.11, a format string vulnerability in nmakehlp.c might allow code...
High
Unreviewed
CVE-2021-35331
was published
May 24, 2022
Multiple format string vulnerabilities in the python module in RRDtool, as used in Zenoss Core...
High
Unreviewed
CVE-2014-6262
was published
May 17, 2022
Format string vulnerability in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows...
High
Unreviewed
CVE-2018-14713
was published
May 24, 2022
An issue was discovered in scopd on Motorola routers CX2 1.01 and M2 1.01. There is a Use of an...
Critical
Unreviewed
CVE-2019-12297
was published
May 24, 2022
cPanel before 60.0.25 allows format-string injection in exception-message handling (SEC-171).
High
Unreviewed
CVE-2016-10773
was published
May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
Moderate
Unreviewed
CVE-2019-13318
was published
May 24, 2022
A valid, authenticated user may be able to trigger a denial of service of the XCC web user...
High
Unreviewed
CVE-2023-25492
was published
May 1, 2023
A format string vulnerability in a binary of the Zyxel NBG-418N v2 firmware versions prior to V1...
Moderate
Unreviewed
CVE-2023-22923
was published
May 1, 2023
Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May...
High
Unreviewed
CVE-2023-21497
was published
May 4, 2023
On Triangle MicroWorks' SCADA Data Gateway version <= v5.01.03, an unauthenticated attacker can...
Critical
Unreviewed
CVE-2023-2186
was published
Jun 7, 2023
A use of externally-controlled format string in Fortinet FortiOS version 7.2.0 through 7.2.4,...
High
Unreviewed
CVE-2022-43953
was published
Jun 13, 2023
A format string vulnerability in the Zyxel ATP series firmware versions 5.10 through 5.36 Patch 2...
High
Unreviewed
CVE-2023-33011
was published
Jul 17, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This...
Critical
Unreviewed
CVE-2023-35087
was published
Jul 21, 2023
ProTip!
Advisories are also available from the
GraphQL API