Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

150 advisories

Loading
An HTTP request smuggling in web application in ASUS ROG Rapture GT-AX11000, RT-AX3000, RT-AX55,... High Unreviewed
CVE-2021-41436 was published Nov 20, 2021
ASUS RT-AX56U Wi-Fi Router is vulnerable to stack-based buffer overflow due to improper... High Unreviewed
CVE-2021-44158 was published Jan 4, 2022
ASUS VivoMini/Mini PC device has an improper input validation vulnerability. A local attacker... High Unreviewed
CVE-2022-21933 was published Jan 22, 2022
The use of a hard-coded cryptographic key significantly increases the possibility encrypted data... High Unreviewed
CVE-2021-46247 was published Feb 18, 2022
ASUS AC68U <=3.0.0.4.385.20852 is affected by a buffer overflow in blocking.cgi, which may cause... High Unreviewed
CVE-2021-45757 was published Mar 24, 2022
ASUS RT-AX56U’s SQL handling function has an SQL injection vulnerability due to insufficient user... High Unreviewed
CVE-2022-23972 was published Apr 8, 2022
ASUS RT-AC86U’s LPD service has insufficient filtering for special characters in the user request... High Unreviewed
CVE-2022-25597 was published Apr 8, 2022
ASUS RT-AX56U’s update_PLC/PORT file has a path traversal vulnerability due to insufficient... High Unreviewed
CVE-2022-23971 was published Apr 8, 2022
ASUS RT-AX56U’s user profile configuration function is vulnerable to stack-based buffer overflow... High Unreviewed
CVE-2022-23973 was published Apr 8, 2022
ASUS RT-AC56U’s configuration function has a heap-based buffer overflow vulnerability due to... High Unreviewed
CVE-2022-25596 was published Apr 8, 2022
ASUS RT-AX56U’s update_json function has a path traversal vulnerability due to insufficient... High Unreviewed
CVE-2022-23970 was published Apr 8, 2022
ASUS WebStorage has a hardcoded API Token in the APP source code. An unauthenticated remote... High Unreviewed
CVE-2022-26672 was published Apr 23, 2022
Buffer overflow in Asus Video Security 3.5.0.0 and earlier, when using authorization, allows... High Unreviewed
CVE-2005-3489 was published May 1, 2022
Stack-based buffer overflow in the DPC Proxy server (DpcProxy.exe) in ASUS Remote Console (aka... High Unreviewed
CVE-2008-1491 was published May 1, 2022
Unspecified vulnerability on the ASUS WL-500W wireless router has unknown impact and remote... High Unreviewed
CVE-2009-3093 was published May 2, 2022
Unspecified vulnerability on the ASUS WL-330gE has unknown impact and remote attack vectors, as... High Unreviewed
CVE-2009-3091 was published May 2, 2022
Buffer overflow on the ASUS WL-500W wireless router has unknown impact and remote attack vectors,... High Unreviewed
CVE-2009-3092 was published May 2, 2022
Symlink Traversal vulnerability in ASUS RT-AC66U and RT-N56U due to misconfiguration in the SMB... High Unreviewed
CVE-2013-4656 was published May 5, 2022
ASUS RT-N56U devices allow CSRF. High Unreviewed
CVE-2013-3093 was published May 5, 2022
Asus DSL-N14U-B1 1.1.2.3_805 allows remote attackers to cause a Denial of Service (DoS) via a TCP... High Unreviewed
CVE-2021-3254 was published May 12, 2022
ASUS GT-AC5300 devices with firmware through 3.0.0.4.384_32738 allow remote attackers to cause a... High Unreviewed
CVE-2018-17020 was published May 13, 2022
Stack-based buffer overflow on the ASUS GT-AC5300 router through 3.0.0.4.384_32738 allows remote... High Unreviewed
CVE-2018-17022 was published May 13, 2022
The Asusgio low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes functionality to read... High Unreviewed
CVE-2018-18535 was published May 13, 2022
The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose... High Unreviewed
CVE-2018-18536 was published May 13, 2022
Stack-based buffer overflow in the ej_update_variables function in router/httpd/web.c on ASUS... High Unreviewed
CVE-2018-5721 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database