Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,249
Erlang
31
GitHub Actions
21
Go
2,018
Maven
5,000+
npm
3,723
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
857
Swift
36
Unreviewed advisories
All unreviewed
5,000+

184 advisories

Loading
The Baxter Spectrum WBM is susceptible to format string attacks via application messaging. An... High Unreviewed
CVE-2022-26393 was published Sep 10, 2022
Apache Airflow vulnerable to Use of Externally-Controlled Format String High
CVE-2022-40604 was published for apache-airflow (pip) Sep 22, 2022
sunSUNQ
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect... High Unreviewed
CVE-2022-35885 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect... High Unreviewed
CVE-2022-35886 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode... High Unreviewed
CVE-2022-35878 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode... High Unreviewed
CVE-2022-35879 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode... High Unreviewed
CVE-2022-35881 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect... High Unreviewed
CVE-2022-35884 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect... High Unreviewed
CVE-2022-35887 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode... High Unreviewed
CVE-2022-35880 was published Oct 25, 2022
Crash in the USB HID protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via... High Unreviewed
CVE-2022-3724 was published Dec 9, 2022
Use of Externally-Controlled Format String vulnerabilities in STST TA prior to SMR Jan-2023... High Unreviewed
CVE-2023-21420 was published Feb 9, 2023
A use of externally-controlled format string in Fortinet FortiWeb version 7.0.0 through 7.0.1,... High Unreviewed
CVE-2023-23783 was published Feb 16, 2023
A valid, authenticated user may be able to trigger a denial of service of the XCC web user... High Unreviewed
CVE-2023-25492 was published May 1, 2023
Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May... High Unreviewed
CVE-2023-21497 was published May 4, 2023
A use of externally-controlled format string in Fortinet FortiOS version 7.2.0 through 7.2.4,... High Unreviewed
CVE-2022-43953 was published Jun 13, 2023
A format string vulnerability in the Zyxel ATP series firmware versions 5.10 through 5.36 Patch 2... High Unreviewed
CVE-2023-33011 was published Jul 17, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This... High Unreviewed
CVE-2023-35086 was published Jul 21, 2023
A vulnerability classified as critical has been found in TOTOLINK N200RE V5 9.3.5u.6437_B20230519... High Unreviewed
CVE-2023-4746 was published Sep 4, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused... High Unreviewed
CVE-2023-39238 was published Sep 7, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This... High Unreviewed
CVE-2023-39239 was published Sep 7, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API.... High Unreviewed
CVE-2023-39240 was published Sep 7, 2023
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within... High Unreviewed
CVE-2023-41349 was published Sep 18, 2023
A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for... High Unreviewed
CVE-2022-26941 was published Oct 19, 2023
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4,... High Unreviewed
CVE-2023-36639 was published Dec 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database