GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,777
Composer 4,248
Erlang 31
GitHub Actions 21
Go 2,014
Maven 5,201
npm 3,721
NuGet 662
pip 3,393
Pub 11
RubyGems 890
Rust 852
Swift 36

Unreviewed advisories

All unreviewed 236,180

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

91 advisories

Filter by severity

Sort by

Least recently updated

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable... Moderate Unreviewed

CVE-2024-4641 was published Jun 25, 2024

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4,... Moderate Unreviewed

CVE-2023-36640 was published May 14, 2024

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.5,... Moderate Unreviewed

CVE-2023-45583 was published May 14, 2024

Use of Externally-Controlled Format String vulnerability in Merge DICOM Toolkit C/C++ on Windows.... Moderate Unreviewed

CVE-2024-23914 was published May 3, 2024

A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.1 and... Moderate Unreviewed

CVE-2023-48784 was published Apr 9, 2024

A use of externally-controlled format string vulnerability [CWE-134] in Fortinet FortiManager... Moderate Unreviewed

CVE-2023-41842 was published Mar 12, 2024

A format string vulnerability in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch... Moderate Unreviewed

CVE-2023-6399 was published Feb 20, 2024

A format string vulnerability in a binary of the Zyxel NBG-418N v2 firmware versions prior to V1... Moderate Unreviewed

CVE-2023-22923 was published May 1, 2023

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... Moderate Unreviewed

CVE-2022-43619 was published Mar 29, 2023

IBM Spectrum Scale (5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1) and IBM Elastic Storage... Moderate Unreviewed

CVE-2022-43869 was published Feb 12, 2023

The Baxter Spectrum WBM (v16, v16D38) and Baxter Spectrum WBM (v17, v17D19, v20D29 to v20D32)... Moderate Unreviewed

CVE-2022-26392 was published Sep 10, 2022

A flaw was found in the Red Hat OpenShift API Management product. User input is not validated... Moderate Unreviewed

CVE-2021-3442 was published Aug 23, 2022

Depending on the way the format strings in the card label are crafted it's possible to leak... Moderate Unreviewed

CVE-2022-2652 was published Aug 5, 2022

A remote denial of service vulnerability was discovered in Aruba Instant version(s): Aruba... Moderate Unreviewed

CVE-2021-37735 was published May 24, 2022

Assuming radio permission is gained, missing input validation in modem interface driver prior to... Moderate Unreviewed

CVE-2021-25489 was published May 24, 2022

A Format String vulnerablity exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW... Moderate Unreviewed

CVE-2021-28846 was published May 24, 2022

An exploitable format string vulnerability exists in the iw_console conio_writestr functionality... Moderate Unreviewed

CVE-2019-5143 was published May 24, 2022

An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to cause a denial of... Moderate Unreviewed

CVE-2019-18420 was published May 24, 2022

This vulnerability allows remote attackers to disclose sensitive information on affected... Moderate Unreviewed

CVE-2019-13318 was published May 24, 2022

Format string vulnerability in PackageKit in Apple Mac OS X 10.6.x before 10.6.6 allows man-in... Moderate Unreviewed

CVE-2010-4013 was published May 17, 2022

Multiple format string vulnerabilities in the phar extension in PHP 5.3 before 5.3.2 allow... Moderate Unreviewed

CVE-2010-2094 was published May 17, 2022

Multiple format string vulnerabilities in AppleScript in Apple Mac OS X before 10.6.7 allow... Moderate Unreviewed

CVE-2011-0173 was published May 17, 2022

Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows... Moderate Unreviewed

CVE-2010-2950 was published May 17, 2022

Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS... Moderate Unreviewed

CVE-2011-0185 was published May 17, 2022

The silc_http_server_parse function in lib/silchttp/silchttpserver.c in the internal HTTP server... Moderate Unreviewed

CVE-2008-7160 was published May 17, 2022

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

91 advisories