GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
99 advisories
Filter by severity
The specific function in ASUS BMC’s firmware Web management page (Web License configuration...
Moderate
Unreviewed
CVE-2021-28183
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Audit log configuration setting...
Moderate
Unreviewed
CVE-2021-28180
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Media support configuration...
Moderate
Unreviewed
CVE-2021-28179
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (ActiveX configuration-1...
Moderate
Unreviewed
CVE-2021-28185
was published
May 24, 2022
The SMTP configuration function in ASUS BMC’s firmware Web management page does not verify the...
Moderate
Unreviewed
CVE-2021-28193
was published
May 24, 2022
The Active Directory configuration function in ASUS BMC’s firmware Web management page does not...
Moderate
Unreviewed
CVE-2021-28184
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Remote image configuration...
Moderate
Unreviewed
CVE-2021-28194
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (ActiveX configuration-2...
Moderate
Unreviewed
CVE-2021-28186
was published
May 24, 2022
The DNS configuration function in ASUS BMC’s firmware Web management page does not verify the...
Moderate
Unreviewed
CVE-2021-28176
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Remote video storage function)...
Moderate
Unreviewed
CVE-2021-28192
was published
May 24, 2022
The CD media configuration function in ASUS BMC’s firmware Web management page does not verify...
Moderate
Unreviewed
CVE-2021-28200
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Remote video configuration...
Moderate
Unreviewed
CVE-2021-28181
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Get Help file function) does...
Moderate
Unreviewed
CVE-2021-28207
was published
May 24, 2022
The LDAP configuration function in ASUS BMC’s firmware Web management page does not verify the...
Moderate
Unreviewed
CVE-2021-28177
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Modify user’s information...
Moderate
Unreviewed
CVE-2021-28199
was published
May 24, 2022
ASUS P453UJ contains the Improper Restriction of Operations within the Bounds of a Memory Buffer...
Moderate
Unreviewed
CVE-2021-41289
was published
May 24, 2022
The Firmware update function in ASUS BMC’s firmware Web management page does not verify the...
Moderate
Unreviewed
CVE-2021-28191
was published
May 24, 2022
ASUSTek ZenBook Pro Due 15 UX582 laptop firmware through 203 has Insecure Permissions that allow...
Moderate
Unreviewed
CVE-2021-42055
was published
May 24, 2022
A vulnerability exists in Broadcom BCM4352 and BCM43684 chips. Any wireless router using BCM4352...
Moderate
Unreviewed
CVE-2021-34174
was published
May 24, 2022
AsIO2_64.sys and AsIO2_32.sys in ASUS GPUTweak II before 2.3.0.3 allow low-privileged users to...
Moderate
Unreviewed
CVE-2021-28686
was published
May 24, 2022
An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. They allow XSS via...
Moderate
Unreviewed
CVE-2020-15499
was published
May 24, 2022
An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. The router accepts...
Moderate
Unreviewed
CVE-2020-15498
was published
May 24, 2022
AsusScreenXpertServicec.exe and ScreenXpertUpgradeServiceManager.exe in ScreenPad2_Upgrade_Tool...
Moderate
Unreviewed
CVE-2020-15009
was published
May 24, 2022
Information disclosure in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS...
Moderate
Unreviewed
CVE-2018-8877
was published
May 24, 2022
Information disclosure in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS...
Moderate
Unreviewed
CVE-2018-8878
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API