Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,990
npm
3,537
NuGet
616
pip
3,105
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

37 advisories

Loading
Buffer Overflow vulnerability in ASUS router RT-AX88U with firmware versions v3.0.0.4.388_24198... Critical Unreviewed
CVE-2024-33278 was published Jun 24, 2024
Certain models of ASUS routers have an arbitrary firmware upload vulnerability. An... Critical Unreviewed
CVE-2024-3912 was published Jun 14, 2024
Certain ASUS router models have authentication bypass vulnerability, allowing unauthenticated... Critical Unreviewed
CVE-2024-3080 was published Jun 14, 2024
ASUS Armoury Crate has a vulnerability in arbitrary file write and allows remote attackers to... Critical Unreviewed
CVE-2023-5716 was published Jan 19, 2024
An improper access control vulnerability exists in RT-AC87U all versions. An attacker may read or... Critical Unreviewed
CVE-2023-47678 was published Nov 15, 2023
An issue in ASUS RT-AX57 v.3.0.0.4_386_52041 allows a remote attacker to execute arbitrary code... Critical Unreviewed
CVE-2023-47007 was published Nov 9, 2023
An issue in ASUS RT-AX57 v.3.0.0.4_386_52041 allows a remote attacker to execute arbitrary code... Critical Unreviewed
CVE-2023-47006 was published Nov 9, 2023
An issue in ASUS RT-AX57 v.3.0.0.4_386_52041 allows a remote attacker to execute arbitrary code... Critical Unreviewed
CVE-2023-47008 was published Nov 9, 2023
An issue in ASUS RT-AX57 v.3.0.0.4_386_52041 allows a remote attacker to execute arbitrary code... Critical Unreviewed
CVE-2023-47005 was published Nov 9, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This... Critical Unreviewed
CVE-2023-35087 was published Jul 21, 2023
ASUS ASMB8 iKVM firmware through 1.14.51 allows remote attackers to execute arbitrary code by... Critical Unreviewed
CVE-2023-26602 was published Feb 26, 2023
Incorrect Access Control issue discoverd in Cloud Disk in ASUS RT-AC68U router firmware version... Critical Unreviewed
CVE-2021-37315 was published Feb 3, 2023
Directory Traversal vulnerability in Cloud Disk in ASUS RT-AC68U router firmware version before 3... Critical Unreviewed
CVE-2021-37317 was published Feb 3, 2023
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... Critical Unreviewed
CVE-2022-4221 was published Dec 1, 2022
ASUS RT-A88U 3.0.0.4.386_45898 is vulnerable to Cross Site Scripting (XSS). The ASUS router admin... Critical Unreviewed
CVE-2021-43702 was published Jul 6, 2022
ASUS RT-N53 3.0.0.4.376.3754 has a command injection vulnerability in the SystemCmd parameter of... Critical Unreviewed
CVE-2022-31874 was published Jun 18, 2022
The administrator application on ASUS GT-AC2900 devices before 3.0.0.4.386.42643 allows... Critical Unreviewed
CVE-2021-32030 was published May 24, 2022
ASUS RT-AX86U router firmware below version under 9.0.0.4_386 has a buffer overflow in the... Critical Unreviewed
CVE-2020-36109 was published May 24, 2022
The ASUS DSL-N17U modem with firmware 1.1.0.2 allows attackers to access the admin interface by... Critical Unreviewed
CVE-2020-35219 was published May 24, 2022
AsusPTPFilter.sys on Asus Precision TouchPad 11.0.0.25 hardware has a Pool Overflow associated... Critical Unreviewed
CVE-2019-10709 was published May 24, 2022
The ASUS HiVivo aspplication before 5.6.27 for ASUS Watch has Missing SSL Certificate Validation. Critical Unreviewed
CVE-2017-17945 was published May 24, 2022
The ASUS Vivobaby application before 1.1.09 for Android has Missing SSL Certificate Validation. Critical Unreviewed
CVE-2017-17944 was published May 24, 2022
System command injection in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows... Critical Unreviewed
CVE-2018-14714 was published May 24, 2022
Buffer overflow in Broadcom ACSD allows remote attackers to execute arbitrary code via a long... Critical Unreviewed
CVE-2013-4659 was published May 17, 2022
Buffer overflows in networkmap on ASUS RT-N56U, RT-N66U, RT-AC66U, RT-N66R, RT-AC66R, RT-AC68U,... Critical Unreviewed
CVE-2017-6548 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API