Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,342
Erlang
31
GitHub Actions
22
Go
2,106
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

155 advisories

Loading
ASUS AC68U <=3.0.0.4.385.20852 is affected by a buffer overflow in blocking.cgi, which may cause... High Unreviewed
CVE-2021-45757 was published Mar 24, 2022
ASUS RT-AX56U’s update_PLC/PORT file has a path traversal vulnerability due to insufficient... High Unreviewed
CVE-2022-23971 was published Apr 8, 2022
ASUS RT-AC56U’s configuration function has a heap-based buffer overflow vulnerability due to... High Unreviewed
CVE-2022-25596 was published Apr 8, 2022
ASUS RT-AX56U’s update_json function has a path traversal vulnerability due to insufficient... High Unreviewed
CVE-2022-23970 was published Apr 8, 2022
ASUS RT-AX56U’s SQL handling function has an SQL injection vulnerability due to insufficient user... High Unreviewed
CVE-2022-23972 was published Apr 8, 2022
ASUS RT-AC86U’s LPD service has insufficient filtering for special characters in the user request... High Unreviewed
CVE-2022-25597 was published Apr 8, 2022
ASUS RT-AX56U’s user profile configuration function is vulnerable to stack-based buffer overflow... High Unreviewed
CVE-2022-23973 was published Apr 8, 2022
ASUS WebStorage has a hardcoded API Token in the APP source code. An unauthenticated remote... High Unreviewed
CVE-2022-26672 was published Apr 23, 2022
AsIO2_64.sys and AsIO2_32.sys in ASUS GPUTweak II before 2.3.0.3 allow low-privileged users to... High Unreviewed
CVE-2021-28685 was published May 24, 2022
ASUS Control Center is vulnerable to SQL injection. An authenticated remote attacker with general... High Unreviewed
CVE-2022-26669 was published Jun 21, 2022
ASUS Control Center API has a broken access control vulnerability. An unauthenticated remote... High Unreviewed
CVE-2022-26668 was published Jun 21, 2022
ASUS RT-AC* and RT-N* devices with firmware before 3.0.0.4.380.7378 have Login Page CSRF and Save... High Unreviewed
CVE-2017-5891 was published May 17, 2022
ASUS RT-AC* and RT-N* devices with firmware before 3.0.0.4.380.7378 allow JSONP Information... High Unreviewed
CVE-2017-5892 was published May 17, 2022
Stack-based buffer overflow in the ASUS TM-AC1900 router allows remote attackers to execute... High Unreviewed
CVE-2015-6949 was published May 17, 2022
There is an unquoted service path in ASUSTeK Aura Ready Game SDK service (GameSDK.exe) 1.0.0.4.... High Unreviewed
CVE-2022-35899 was published Jul 22, 2022
Multiple buffer overflows in web.c in httpd on the ASUS RT-N56U and RT-AC66U routers with... High Unreviewed
CVE-2013-6343 was published May 17, 2022
The Network Analysis tab (Main_Analysis_Content.asp) in the ASUS RT-AC68U and other RT series... High Unreviewed
CVE-2013-5948 was published May 17, 2022
ASUS Japan WL-330NUL devices with firmware before 3.0.0.42 allow remote attackers to execute... High Unreviewed
CVE-2015-7788 was published May 17, 2022
Multiple unspecified vulnerabilities in the AiCloud feature on the ASUS RT-AC66U, RT-N66U, RT... High Unreviewed
CVE-2013-4937 was published May 17, 2022
The Broadcom BCM4325 and BCM4329 Wi-Fi chips, as used in certain Acer, Apple, Asus, Ford, HTC,... High Unreviewed
CVE-2012-2619 was published May 17, 2022
The web api server on Port 8080 of ASUS HG100 firmware up to 1.05.12, which is vulnerable to... High Unreviewed
CVE-2019-11060 was published May 24, 2022
A broken access control vulnerability in SmartHome app (Android versions up to 3.0.42_190515, ios... High Unreviewed
CVE-2019-11063 was published May 24, 2022
The Asus ZenFone 5 Selfie Android device with a build fingerprint of asus/WW_Phone/ASUS_X017D_1:7... High Unreviewed
CVE-2019-15394 was published May 24, 2022
The Asus ZenFone 3 Ultra Android device with a build fingerprint of asus/WW_Phone/ASUS_A001:7.0... High Unreviewed
CVE-2019-15400 was published May 24, 2022
The Asus ZenFone 3s Max Android device with a build fingerprint of asus/IN_X00G/ASUS_X00G_1:7.0... High Unreviewed
CVE-2019-15403 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database