GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,015
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
176 advisories
Filter by severity
A use of externally-controlled format string vulnerability has been reported to affect several...
High
Unreviewed
CVE-2024-50397
was published
Nov 22, 2024
A use of externally-controlled format string vulnerability has been reported to affect several...
High
Unreviewed
CVE-2024-50396
was published
Nov 22, 2024
A use of externally-controlled format string in Fortinet FortiAnalyzer versions 7.4.0 through 7.4...
High
Unreviewed
CVE-2024-45330
was published
Oct 8, 2024
A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE)...
High
Unreviewed
CVE-2024-39529
was published
Jul 11, 2024
Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-6145
was published
Jun 19, 2024
DMitry (Deepmagic Information Gathering Tool) 1.3a has a format-string vulnerability, with a...
High
Unreviewed
CVE-2024-31837
was published
Apr 30, 2024
A use of externally-controlled format string in Fortinet FortiOS 7.2.0 through 7.2.4, 7.0.0...
High
Unreviewed
CVE-2023-29181
was published
Feb 22, 2024
A format string vulnerability in a function of the IPSec VPN feature in Zyxel ATP...
High
Unreviewed
CVE-2023-6764
was published
Feb 20, 2024
A format string issue in the Controller 6000's optional diagnostic web interface can be used...
High
Unreviewed
CVE-2023-24590
was published
Dec 19, 2023
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4,...
High
Unreviewed
CVE-2023-36639
was published
Dec 13, 2023
A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for...
High
Unreviewed
CVE-2022-26941
was published
Oct 19, 2023
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within...
High
Unreviewed
CVE-2023-41349
was published
Sep 18, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused...
High
Unreviewed
CVE-2023-39238
was published
Sep 7, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This...
High
Unreviewed
CVE-2023-39239
was published
Sep 7, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API....
High
Unreviewed
CVE-2023-39240
was published
Sep 7, 2023
A vulnerability classified as critical has been found in TOTOLINK N200RE V5 9.3.5u.6437_B20230519...
High
Unreviewed
CVE-2023-4746
was published
Sep 4, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This...
High
Unreviewed
CVE-2023-35086
was published
Jul 21, 2023
A format string vulnerability in the Zyxel ATP series firmware versions 5.10 through 5.36 Patch 2...
High
Unreviewed
CVE-2023-33011
was published
Jul 17, 2023
A use of externally-controlled format string in Fortinet FortiOS version 7.2.0 through 7.2.4,...
High
Unreviewed
CVE-2022-43953
was published
Jun 13, 2023
Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May...
High
Unreviewed
CVE-2023-21497
was published
May 4, 2023
A valid, authenticated user may be able to trigger a denial of service of the XCC web user...
High
Unreviewed
CVE-2023-25492
was published
May 1, 2023
A use of externally-controlled format string in Fortinet FortiWeb version 7.0.0 through 7.0.1,...
High
Unreviewed
CVE-2023-23783
was published
Feb 16, 2023
Use of Externally-Controlled Format String vulnerabilities in STST TA prior to SMR Jan-2023...
High
Unreviewed
CVE-2023-21420
was published
Feb 9, 2023
Crash in the USB HID protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via...
High
Unreviewed
CVE-2022-3724
was published
Dec 9, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect...
High
Unreviewed
CVE-2022-35885
was published
Oct 25, 2022
ProTip!
Advisories are also available from the
GraphQL API