GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 19,575
Composer 3,992
Erlang 29
GitHub Actions 16
Go 1,782
Maven 5,014
npm 3,544
NuGet 619
pip 3,134
Pub 10
RubyGems 838
Rust 795
Swift 34

Unreviewed advisories

All unreviewed 223,641

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

299 advisories

Filter by severity

Sort by

Least recently updated

Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11 and earlier, and PAN-OS 8.1.2... High Unreviewed

CVE-2019-1579 was published May 24, 2022

Format String vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS... High Unreviewed

CVE-2018-0175 was published May 13, 2022

A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE)... High Unreviewed

CVE-2024-39529 was published Jul 11, 2024

Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain... High Unreviewed

CVE-2005-1394 was published May 1, 2022

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: dbg-tlv:... Critical Unreviewed

CVE-2024-35845 was published May 17, 2024

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable... Moderate Unreviewed

CVE-2024-4641 was published Jun 25, 2024

Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability... High Unreviewed

CVE-2024-6145 was published Jun 19, 2024

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4,... Moderate Unreviewed

CVE-2023-36640 was published May 14, 2024

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.5,... Moderate Unreviewed

CVE-2023-45583 was published May 14, 2024

Foxit PDF Reader print Method Use of Externally-Controlled Format String Information Disclosure... Low Unreviewed

CVE-2021-34970 was published May 8, 2024

Use of Externally-Controlled Format String vulnerability in Merge DICOM Toolkit C/C++ on Windows.... Moderate Unreviewed

CVE-2024-23914 was published May 3, 2024

In the standard library in Rust before 1.50.3, there is an optimization for joining strings that... High Unreviewed

CVE-2020-36323 was published May 24, 2022

A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.1 and... Moderate Unreviewed

CVE-2023-48784 was published Apr 9, 2024

A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for... High Unreviewed

CVE-2022-26941 was published Oct 19, 2023

ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within... High Unreviewed

CVE-2023-41349 was published Sep 18, 2023

It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This... Critical Unreviewed

CVE-2023-35087 was published Jul 21, 2023

A format string vulnerability in the Zyxel ATP series firmware versions 5.10 through 5.36 Patch 2... High Unreviewed

CVE-2023-33011 was published Jul 17, 2023

A use of externally-controlled format string in Fortinet FortiOS version 7.2.0 through 7.2.4,... High Unreviewed

CVE-2022-43953 was published Jun 13, 2023

On Triangle MicroWorks' SCADA Data Gateway version <= v5.01.03, an unauthenticated attacker can... Critical Unreviewed

CVE-2023-2186 was published Jun 7, 2023

Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May... High Unreviewed

CVE-2023-21497 was published May 4, 2023

A format string vulnerability in a binary of the Zyxel NBG-418N v2 firmware versions prior to V1... Moderate Unreviewed

CVE-2023-22923 was published May 1, 2023

A valid, authenticated user may be able to trigger a denial of service of the XCC web user... High Unreviewed

CVE-2023-25492 was published May 1, 2023

This vulnerability allows remote attackers to disclose sensitive information on affected... Moderate Unreviewed

CVE-2019-13318 was published May 24, 2022

cPanel before 60.0.25 allows format-string injection in exception-message handling (SEC-171). High Unreviewed

CVE-2016-10773 was published May 24, 2022

An issue was discovered in scopd on Motorola routers CX2 1.01 and M2 1.01. There is a Use of an... Critical Unreviewed

CVE-2019-12297 was published May 24, 2022

Previous 1 2 3 4 5 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

299 advisories