GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
99 advisories
Filter by severity
Cross-site request forgery (CSRF) vulnerability in the ASUS RT-G32 routers with firmware 2.0.2.6...
Moderate
Unreviewed
CVE-2015-2676
was published
May 17, 2022
Advanced_System_Content.asp in the ASUS RT series routers with firmware before 3.0.0.4.374.5517,...
Moderate
Unreviewed
CVE-2014-2719
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Advanced_Wireless_Content.asp in ASUS RT-AC68U and...
Moderate
Unreviewed
CVE-2014-2925
was published
May 17, 2022
ASUS Japan WL-330NUL devices with firmware before 3.0.0.42 allow remote attackers to cause a...
Moderate
Unreviewed
CVE-2015-7789
was published
May 17, 2022
ASUS Japan WL-330NUL devices with firmware before 3.0.0.42 allow remote attackers to discover the...
Moderate
Unreviewed
CVE-2015-7787
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability on ASUS Japan WL-330NUL devices with firmware before 3.0...
Moderate
Unreviewed
CVE-2015-7790
was published
May 17, 2022
Cross-site request forgery (CSRF) vulnerability on ASUS JAPAN RT-AC87U routers with firmware 3.0...
Moderate
Unreviewed
CVE-2014-7270
was published
May 17, 2022
ASUS JAPAN RT-AC87U routers with firmware 3.0.0.4.378.3754 and earlier, RT-AC68U routers with...
Moderate
Unreviewed
CVE-2014-7269
was published
May 17, 2022
qis/QIS_finish.htm on the ASUS RT-N10E router with firmware before 2.0.0.25 does not require...
Moderate
Unreviewed
CVE-2013-3610
was published
May 17, 2022
Buffer overflow in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows attackers to...
Moderate
Unreviewed
CVE-2018-14712
was published
May 24, 2022
Cross-site scripting in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows attackers...
Moderate
Unreviewed
CVE-2018-14710
was published
May 24, 2022
Missing cross-site request forgery protection in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382...
Moderate
Unreviewed
CVE-2018-14711
was published
May 24, 2022
The Asus ZenFone 4 Selfie Android device with a build fingerprint of asus/WW_Z01M/ASUS_Z01M_1:7.1...
Moderate
Unreviewed
CVE-2019-15412
was published
May 24, 2022
AsLdrSrv.exe in ASUS ATK Package before V1.0.0061 (for Windows 10 notebook PCs) could lead to...
Moderate
Unreviewed
CVE-2019-19235
was published
May 24, 2022
An issue was discovered on ASUS HG100 1.05.12, WS-101 1.05.12, and TS-101 1.05.12 devices using...
Moderate
Unreviewed
CVE-2019-15910
was published
May 24, 2022
An issue was discovered on ASUS HG100 1.05.12, WS-101 1.05.12, and TS-101 1.05.12 devices using...
Moderate
Unreviewed
CVE-2019-15912
was published
May 24, 2022
ASUS WRT-AC66U 3 RT 3.0.0.4.372_67 devices allow XSS via the Client Name field to the Parental...
Moderate
Unreviewed
CVE-2020-7997
was published
May 24, 2022
Information disclosure in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS...
Moderate
Unreviewed
CVE-2018-8877
was published
May 24, 2022
Information disclosure in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS...
Moderate
Unreviewed
CVE-2018-8878
was published
May 24, 2022
AsusScreenXpertServicec.exe and ScreenXpertUpgradeServiceManager.exe in ScreenPad2_Upgrade_Tool...
Moderate
Unreviewed
CVE-2020-15009
was published
May 24, 2022
An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. They allow XSS via...
Moderate
Unreviewed
CVE-2020-15499
was published
May 24, 2022
An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. The router accepts...
Moderate
Unreviewed
CVE-2020-15498
was published
May 24, 2022
AsIO2_64.sys and AsIO2_32.sys in ASUS GPUTweak II before 2.3.0.3 allow low-privileged users to...
Moderate
Unreviewed
CVE-2021-28686
was published
May 24, 2022
A vulnerability exists in Broadcom BCM4352 and BCM43684 chips. Any wireless router using BCM4352...
Moderate
Unreviewed
CVE-2021-34174
was published
May 24, 2022
ASUSTek ZenBook Pro Due 15 UX582 laptop firmware through 203 has Insecure Permissions that allow...
Moderate
Unreviewed
CVE-2021-42055
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API