GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,015
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
309 advisories
Filter by severity
Format string vulnerability in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51...
High
Unreviewed
CVE-2011-0270
was published
May 17, 2022
A Format String vulnerability exists in DrayTek Vigor 2960 <= 1.5.1.3, DrayTek Vigor 3900 <= 1.5...
Critical
Unreviewed
CVE-2021-42911
was published
Mar 30, 2022
ASUS RT-AX88U has a Format String vulnerability, which allows an unauthenticated remote attacker...
Critical
Unreviewed
CVE-2022-26674
was published
Apr 23, 2022
Format string vulnerability in panoFileOutputNamesCreate() in libpano13 2.9.20~rc2+dfsg-3 and...
Critical
Unreviewed
CVE-2021-20307
was published
May 24, 2022
The silc_asn1_encoder function in lib/silcasn1/silcasn1_encode.c in Secure Internet Live...
Moderate
Unreviewed
CVE-2008-7159
was published
May 17, 2022
The web management interface in 3Com Wireless 8760 Dual Radio 11a/b/g PoE Access Point allows...
High
Unreviewed
CVE-2008-6395
was published
May 17, 2022
The zmq3 input and output modules in rsyslog before 8.28.0 interpreted description fields as...
Critical
Unreviewed
CVE-2017-12588
was published
May 17, 2022
The voice wakeup module has a vulnerability of using externally-controlled format strings....
High
Unreviewed
CVE-2022-31753
was published
Jun 14, 2022
Multiple format string vulnerabilities in the SSI filter in Xitami Web Server 2.5c2, and possibly...
High
Unreviewed
CVE-2008-6520
was published
May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue...
High
Unreviewed
CVE-2017-2403
was published
May 17, 2022
A vulnerability in the DHCP code for the Zero Touch Provisioning feature of Cisco ASR 920 Series...
High
Unreviewed
CVE-2017-3859
was published
May 17, 2022
CloudView NMS before 2.10a has a format string issue exploitable over SNMP.
Critical
Unreviewed
CVE-2016-5074
was published
May 17, 2022
Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code.
High
Unreviewed
CVE-2015-8107
was published
May 17, 2022
Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue...
Critical
Unreviewed
CVE-2015-7271
was published
May 17, 2022
Format string vulnerability in Cisco Email Security Appliance (ESA) 7.6.0 and 8.0.0 allows remote...
Moderate
Unreviewed
CVE-2015-6285
was published
May 17, 2022
Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary...
High
Unreviewed
CVE-2017-5613
was published
May 17, 2022
A vulnerability was found in multimon-ng. It has been rated as critical. This issue affects the...
Critical
Unreviewed
CVE-2020-36619
was published
Dec 19, 2022
Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System...
High
Unreviewed
CVE-2013-4258
was published
May 17, 2022
Multiple format string vulnerabilities in mcrypt 2.6.8 and earlier might allow user-assisted...
Moderate
Unreviewed
CVE-2012-4426
was published
May 17, 2022
Format string vulnerability in the _vsnsprintf function in rrobotd.exe in the Device Manager in...
High
Unreviewed
CVE-2013-0929
was published
May 17, 2022
Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10...
High
Unreviewed
CVE-2015-8106
was published
May 17, 2022
Format string vulnerability in the up.time client in Idera Uptime Infrastructure Monitor 6.0 and...
Moderate
Unreviewed
CVE-2015-2894
was published
May 17, 2022
Format string vulnerability in the token processing system (pki-tps) in Red Hat Certificate...
High
Unreviewed
CVE-2013-1886
was published
May 17, 2022
Format string vulnerability in the rrdtool module 1.4.7 for Python, as used in Zenoss, allows...
Moderate
Unreviewed
CVE-2013-2131
was published
May 17, 2022
Format string vulnerability in the PROJECT::write_account_file function in client/cs_account.cpp...
Moderate
Unreviewed
CVE-2013-7386
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API