GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
142 advisories
Filter by severity
ASUS Download Master has a buffer overflow vulnerability. An unauthenticated remote attacker with...
High
Unreviewed
CVE-2024-31163
was published
Jun 14, 2024
The specific function parameter of ASUS Download Master does not properly filter user input. An...
High
Unreviewed
CVE-2024-31162
was published
Jun 14, 2024
The upload functionality of ASUS Download Master does not properly filter user input. Remote...
High
Unreviewed
CVE-2024-31161
was published
Jun 14, 2024
Certain models of ASUS routers have buffer overflow vulnerabilities, allowing remote attackers...
High
Unreviewed
CVE-2024-3079
was published
Jun 14, 2024
ASUS routers supporting custom OpenVPN profiles are vulnerable to a code execution vulnerability....
High
Unreviewed
CVE-2024-0401
was published
May 20, 2024
Certain ASUS WiFi routers models has an OS Command Injection vulnerability, allowing an...
High
Unreviewed
CVE-2024-1655
was published
Apr 15, 2024
The ASUS Zenfone V Live Android device with a build fingerprint of asus/VZW_ASUS_A009/ASUS_A009:7...
High
Unreviewed
CVE-2018-14993
was published
May 24, 2022
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within...
High
Unreviewed
CVE-2023-41349
was published
Sep 18, 2023
ASUS RT-AX55 v3.0.0.4.386.51598 was discovered to contain an authenticated command injection...
High
Unreviewed
CVE-2023-39780
was published
Sep 11, 2023
ASUS RT-AC86U Traffic Analyzer - Apps analysis function has insufficient filtering of special...
High
Unreviewed
CVE-2023-39237
was published
Sep 7, 2023
ASUS RT-AC86U Traffic Analyzer - Statistic function has insufficient filtering of special...
High
Unreviewed
CVE-2023-39236
was published
Sep 7, 2023
ASUS RT-AC86U unused Traffic Analyzer legacy Statistic function has insufficient filtering of...
High
Unreviewed
CVE-2023-38033
was published
Sep 7, 2023
ASUS RT-AC86U AiProtection security- related function has insufficient filtering of special...
High
Unreviewed
CVE-2023-38032
was published
Sep 7, 2023
ASUS RT-AC86U Adaptive QoS - Web History function has insufficient filtering of special...
High
Unreviewed
CVE-2023-38031
was published
Sep 7, 2023
ASUS RT-AC66U B1 3.0.0.4.286_51665 was discovered to transmit sensitive information in cleartext.
High
Unreviewed
CVE-2023-39086
was published
Aug 8, 2023
ASUS RT-AX88U's httpd is subject to an unauthenticated DoS condition. A remote attacker can send...
High
Unreviewed
CVE-2023-34359
was published
Jul 31, 2023
ASUS RT-AX88U's httpd is subject to an unauthenticated DoS condition. A remote attacker can send...
High
Unreviewed
CVE-2023-34358
was published
Jul 31, 2023
ASUS SetupAsusServices v1.0.5.1 in Asus Armoury Crate v5.3.4.0 contains an unquoted service path...
High
Unreviewed
CVE-2023-26911
was published
Jul 26, 2023
ASUS RT-AC86U’s specific cgi function has a stack-based buffer overflow vulnerability due to...
High
Unreviewed
CVE-2023-28703
was published
Jul 6, 2023
ASUS RT-AC86U does not filter special characters for parameters in specific web URLs. A remote...
High
Unreviewed
CVE-2023-28702
was published
Jun 2, 2023
An issue was discovered on ASUS DSL-N14U-B1 1.1.2.3_805 devices. An attacker can upload arbitrary...
High
Unreviewed
CVE-2021-3166
was published
May 24, 2022
An issue was discovered in Asuswrt-Merlin 384.6. There is a stack-based buffer overflow issue in...
High
Unreviewed
CVE-2018-20336
was published
May 24, 2022
A broken access control vulnerability in HG100 firmware versions up to 4.00.06 allows an attacker...
High
Unreviewed
CVE-2019-11061
was published
May 24, 2022
Format string vulnerability in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows...
High
Unreviewed
CVE-2018-14713
was published
May 24, 2022
The ASUS ZenFone 3 Max Android device with a build fingerprint of asus/US_Phone/ASUS_X008_1:7.0...
High
Unreviewed
CVE-2018-14980
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API