GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,992
Erlang
29
GitHub Actions
16
Go
1,782
Maven
5,000+
npm
3,544
NuGet
619
pip
3,134
Pub
10
RubyGems
838
Rust
795
Swift
34
Unreviewed advisories
All unreviewed
5,000+
315 advisories
Filter by severity
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within...
High
Unreviewed
CVE-2023-41349
was published
Sep 18, 2023
A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for...
High
Unreviewed
CVE-2022-26941
was published
Oct 19, 2023
A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.1 and...
Moderate
Unreviewed
CVE-2023-48784
was published
Apr 9, 2024
In the standard library in Rust before 1.50.3, there is an optimization for joining strings that...
High
Unreviewed
CVE-2020-36323
was published
May 24, 2022
Use of Externally-Controlled Format String vulnerability in Merge DICOM Toolkit C/C++ on Windows....
Moderate
Unreviewed
CVE-2024-23914
was published
May 3, 2024
Foxit PDF Reader print Method Use of Externally-Controlled Format String Information Disclosure...
Low
Unreviewed
CVE-2021-34970
was published
May 8, 2024
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4,...
Moderate
Unreviewed
CVE-2023-36640
was published
May 14, 2024
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.5,...
Moderate
Unreviewed
CVE-2023-45583
was published
May 14, 2024
Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-6145
was published
Jun 19, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable...
Moderate
Unreviewed
CVE-2024-4641
was published
Jun 25, 2024
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: dbg-tlv:...
Critical
Unreviewed
CVE-2024-35845
was published
May 17, 2024
Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain...
High
Unreviewed
CVE-2005-1394
was published
May 1, 2022
A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE)...
High
Unreviewed
CVE-2024-39529
was published
Jul 11, 2024
Format String vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS...
High
Unreviewed
CVE-2018-0175
was published
May 13, 2022
Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11 and earlier, and PAN-OS 8.1.2...
High
Unreviewed
CVE-2019-1579
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API