GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,683
Erlang
29
GitHub Actions
16
Go
1,708
Maven
4,944
npm
3,473
NuGet
603
pip
2,995
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+
309 advisories
Filter by severity
A format string vulnerability in a binary of the Zyxel NBG-418N v2 firmware versions prior to V1...
Moderate
Unreviewed
CVE-2023-22923
was published
May 1, 2023
A valid, authenticated user may be able to trigger a denial of service of the XCC web user...
High
Unreviewed
CVE-2023-25492
was published
May 1, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected...
Moderate
Unreviewed
CVE-2022-43619
was published
Mar 29, 2023
A vulnerability, which was classified as critical, was found in ayttm up to 0.5.0.89. This...
Critical
Unreviewed
CVE-2015-10088
was published
Mar 5, 2023
A use of externally-controlled format string in Fortinet FortiWeb version 7.0.0 through 7.0.1,...
High
Unreviewed
CVE-2023-23783
was published
Feb 16, 2023
IBM Spectrum Scale (5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1) and IBM Elastic Storage...
Moderate
Unreviewed
CVE-2022-43869
was published
Feb 12, 2023
Use of Externally-Controlled Format String vulnerabilities in STST TA prior to SMR Jan-2023...
High
Unreviewed
CVE-2023-21420
was published
Feb 9, 2023
In BIG-IP starting in versions 17.0.0, 16.1.2.2, 15.1.5.1, 14.1.4.6, and 13.1.5 on their...
Critical
Unreviewed
CVE-2023-22374
was published
Feb 1, 2023
A vulnerability was found in intgr uqm-wasm. It has been classified as critical. This affects the...
Critical
Unreviewed
CVE-2020-36643
was published
Jan 6, 2023
A vulnerability, which was classified as critical, has been found in sslh. This issue affects the...
Critical
Unreviewed
CVE-2022-4639
was published
Dec 22, 2022
A vulnerability was found in multimon-ng. It has been rated as critical. This issue affects the...
Critical
Unreviewed
CVE-2020-36619
was published
Dec 19, 2022
Crash in the USB HID protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via...
High
Unreviewed
CVE-2022-3724
was published
Dec 9, 2022
TiDB vulnerable to Use of Externally-Controlled Format String
Critical
CVE-2022-3023
was published
for
github.com/pingcap/tidb
(Go)
Nov 4, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect...
High
Unreviewed
CVE-2022-35886
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect...
High
Unreviewed
CVE-2022-35884
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect...
High
Unreviewed
CVE-2022-35885
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode...
Critical
Unreviewed
CVE-2022-35874
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode...
Critical
Unreviewed
CVE-2022-35875
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode...
Critical
Unreviewed
CVE-2022-35877
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode...
High
Unreviewed
CVE-2022-35881
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect...
High
Unreviewed
CVE-2022-35887
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode...
High
Unreviewed
CVE-2022-35878
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode...
High
Unreviewed
CVE-2022-35879
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode...
High
Unreviewed
CVE-2022-35880
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode...
Critical
Unreviewed
CVE-2022-35876
was published
Oct 25, 2022
ProTip!
Advisories are also available from the
GraphQL API