GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
101 advisories
Filter by severity
The Firmware protocol configuration function in ASUS BMC’s firmware Web management page does not...
Moderate
Unreviewed
CVE-2021-28198
was published
May 24, 2022
The SMTP configuration function in ASUS BMC’s firmware Web management page does not verify the...
Moderate
Unreviewed
CVE-2021-28189
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Web License configuration...
Moderate
Unreviewed
CVE-2021-28183
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Media support configuration...
Moderate
Unreviewed
CVE-2021-28179
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Audit log configuration setting...
Moderate
Unreviewed
CVE-2021-28180
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (ActiveX configuration-1...
Moderate
Unreviewed
CVE-2021-28185
was published
May 24, 2022
The SMTP configuration function in ASUS BMC’s firmware Web management page does not verify the...
Moderate
Unreviewed
CVE-2021-28193
was published
May 24, 2022
The Active Directory configuration function in ASUS BMC’s firmware Web management page does not...
Moderate
Unreviewed
CVE-2021-28184
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Remote image configuration...
Moderate
Unreviewed
CVE-2021-28194
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (ActiveX configuration-2...
Moderate
Unreviewed
CVE-2021-28186
was published
May 24, 2022
The DNS configuration function in ASUS BMC’s firmware Web management page does not verify the...
Moderate
Unreviewed
CVE-2021-28176
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Remote video storage function)...
Moderate
Unreviewed
CVE-2021-28192
was published
May 24, 2022
The CD media configuration function in ASUS BMC’s firmware Web management page does not verify...
Moderate
Unreviewed
CVE-2021-28200
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Remote video configuration...
Moderate
Unreviewed
CVE-2021-28181
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Get Help file function) does...
Moderate
Unreviewed
CVE-2021-28207
was published
May 24, 2022
The LDAP configuration function in ASUS BMC’s firmware Web management page does not verify the...
Moderate
Unreviewed
CVE-2021-28177
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Modify user’s information...
Moderate
Unreviewed
CVE-2021-28199
was published
May 24, 2022
ASUS P453UJ contains the Improper Restriction of Operations within the Bounds of a Memory Buffer...
Moderate
Unreviewed
CVE-2021-41289
was published
May 24, 2022
The Firmware update function in ASUS BMC’s firmware Web management page does not verify the...
Moderate
Unreviewed
CVE-2021-28191
was published
May 24, 2022
ASUSTek ZenBook Pro Due 15 UX582 laptop firmware through 203 has Insecure Permissions that allow...
Moderate
Unreviewed
CVE-2021-42055
was published
May 24, 2022
A vulnerability exists in Broadcom BCM4352 and BCM43684 chips. Any wireless router using BCM4352...
Moderate
Unreviewed
CVE-2021-34174
was published
May 24, 2022
AsIO2_64.sys and AsIO2_32.sys in ASUS GPUTweak II before 2.3.0.3 allow low-privileged users to...
Moderate
Unreviewed
CVE-2021-28686
was published
May 24, 2022
An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. They allow XSS via...
Moderate
Unreviewed
CVE-2020-15499
was published
May 24, 2022
An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. The router accepts...
Moderate
Unreviewed
CVE-2020-15498
was published
May 24, 2022
AsusScreenXpertServicec.exe and ScreenXpertUpgradeServiceManager.exe in ScreenPad2_Upgrade_Tool...
Moderate
Unreviewed
CVE-2020-15009
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API