GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
142 advisories
Filter by severity
Asus DSL-N14U-B1 1.1.2.3_805 allows remote attackers to cause a Denial of Service (DoS) via a TCP...
High
Unreviewed
CVE-2021-3254
was published
May 12, 2022
Symlink Traversal vulnerability in ASUS RT-AC66U and RT-N56U due to misconfiguration in the SMB...
High
Unreviewed
CVE-2013-4656
was published
May 5, 2022
Unspecified vulnerability on the ASUS WL-330gE has unknown impact and remote attack vectors, as...
High
Unreviewed
CVE-2009-3091
was published
May 2, 2022
Unspecified vulnerability on the ASUS WL-500W wireless router has unknown impact and remote...
High
Unreviewed
CVE-2009-3093
was published
May 2, 2022
Buffer overflow on the ASUS WL-500W wireless router has unknown impact and remote attack vectors,...
High
Unreviewed
CVE-2009-3092
was published
May 2, 2022
Stack-based buffer overflow in the DPC Proxy server (DpcProxy.exe) in ASUS Remote Console (aka...
High
Unreviewed
CVE-2008-1491
was published
May 1, 2022
Buffer overflow in Asus Video Security 3.5.0.0 and earlier, when using authorization, allows...
High
Unreviewed
CVE-2005-3489
was published
May 1, 2022
The Web Set Media Image function in ASUS BMC’s firmware Web management page does not filter the...
High
Unreviewed
CVE-2021-28203
was published
May 24, 2022
The specific function in ASUS BMC’s firmware Web management page (Modify user’s information...
High
Unreviewed
CVE-2021-28204
was published
May 24, 2022
An information disclosure vulnerability exists in the cm_processREQ_NC opcode of Asus RT-AX82U 3...
High
Unreviewed
CVE-2022-38105
was published
Jan 10, 2023
An authentication bypass vulnerability exists in the get_IFTTTTtoken.cgi functionality of Asus RT...
High
Unreviewed
CVE-2022-35401
was published
Jan 10, 2023
A denial of service vulnerability exists in the cfg_server cm_processConnDiagPktList opcode of...
High
Unreviewed
CVE-2022-38393
was published
Jan 10, 2023
ASUS ROG Armoury Crate Lite before 4.2.10 allows local users to gain privileges by placing a...
High
Unreviewed
CVE-2021-40981
was published
May 24, 2022
In ASUS RT-AX3000, ZenWiFi AX (XT8), RT-AX88U, and other ASUS routers with firmware < 3.0.0.4.386...
High
Unreviewed
CVE-2021-3128
was published
May 24, 2022
The UX360CA BIOS through 303 on ASUS laptops allow an attacker (with the ring 0 privilege) to...
High
Unreviewed
CVE-2021-26943
was published
May 24, 2022
Denial of service in ASUSWRT ASUS RT-AX3000 firmware versions 3.0.0.4.384_10177 and earlier...
High
Unreviewed
CVE-2021-3229
was published
May 24, 2022
Asus RT-N12E 2.0.0.39 is affected by an incorrect access control vulnerability. Through system...
High
Unreviewed
CVE-2020-23648
was published
Oct 19, 2022
Ene.sys in Asus Aura Sync through 1.07.71 does not properly validate input to IOCTL 0x80102044,...
High
Unreviewed
CVE-2019-17603
was published
May 24, 2022
DevActSvc.exe in ASUS Device Activation before 1.0.7.0 for Windows 10 notebooks and PCs could...
High
Unreviewed
CVE-2020-10649
was published
May 24, 2022
An issue was discovered on ASUS HG100 1.05.12, WS-101 1.05.12, and TS-101 1.05.12 devices using...
High
Unreviewed
CVE-2019-15911
was published
May 24, 2022
A stack overflow vulnerability exists in the httpd service in ASUS RT-AX56U Router Version 3.0.0...
High
Unreviewed
CVE-2021-40556
was published
Oct 6, 2022
The Asus ZenFone 5Q Android device with a build fingerprint of asus/WW_Phone/ASUS_X017D_2:7.1.1...
High
Unreviewed
CVE-2019-15409
was published
May 24, 2022
The Asus ZenFone AR Android device with a build fingerprint of asus/WW_ASUS_A002/ASUS_A002:7.0...
High
Unreviewed
CVE-2019-15414
was published
May 24, 2022
The Asus ASUS_X00K_1 Android device with a build fingerprint of asus/CN_X00K/ASUS_X00K_1:7.0...
High
Unreviewed
CVE-2019-15418
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API