Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,367
Maven
5,000+
npm
3,986
NuGet
720
pip
3,778
Pub
12
RubyGems
926
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

178 advisories

Loading
The web management interface in 3Com Wireless 8760 Dual Radio 11a/b/g PoE Access Point allows... High Unreviewed
CVE-2008-6395 was published May 17, 2022
The voice wakeup module has a vulnerability of using externally-controlled format strings.... High Unreviewed
CVE-2022-31753 was published Jun 14, 2022
Multiple format string vulnerabilities in the SSI filter in Xitami Web Server 2.5c2, and possibly... High Unreviewed
CVE-2008-6520 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue... High Unreviewed
CVE-2017-2403 was published May 17, 2022
A vulnerability in the DHCP code for the Zero Touch Provisioning feature of Cisco ASR 920 Series... High Unreviewed
CVE-2017-3859 was published May 17, 2022
Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code. High Unreviewed
CVE-2015-8107 was published May 17, 2022
Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System... High Unreviewed
CVE-2013-4258 was published May 17, 2022
Format string vulnerability in the _vsnsprintf function in rrobotd.exe in the Device Manager in... High Unreviewed
CVE-2013-0929 was published May 17, 2022
Format string vulnerability in the token processing system (pki-tps) in Red Hat Certificate... High Unreviewed
CVE-2013-1886 was published May 17, 2022
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before... High Unreviewed
CVE-2011-1764 was published May 17, 2022
Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4... High Unreviewed
CVE-2012-2288 was published May 17, 2022
Multiple format string vulnerabilities in the DCC functionality in KVIrc 3.4 and 4.0 have... High Unreviewed
CVE-2010-2451 was published May 17, 2022
Format string vulnerability in the logText function in shmemmgr9.dll in IGSSdataServer.exe 9.00... High Unreviewed
CVE-2011-1568 was published May 17, 2022
Multiple format string vulnerabilities in White_Dune before 0.29beta851 have unspecified impact... High Unreviewed
CVE-2008-7228 was published May 17, 2022
Format string vulnerability in RealNetworks Helix Server 12.x, 13.x, and 14.x before 14.2, and... High Unreviewed
CVE-2010-4235 was published May 17, 2022
Format string vulnerability in authcfg.cgi in Accoria Web Server (aka Rock Web Server) 1.4.7... High Unreviewed
CVE-2010-2271 was published May 17, 2022
AnyDesk before 5.5.3 on Linux and FreeBSD has a format string vulnerability that can be exploited... High Unreviewed
CVE-2020-13160 was published May 24, 2022
On Audi A7 MMI 2014 vehicles, the Bluetooth stack in Audi A7 MMI Multiplayer with version (N... High Unreviewed
CVE-2020-27524 was published May 24, 2022
A format string vulnerability in FortiWeb 6.3.0 through 6.3.5 may allow an authenticated, remote... High Unreviewed
CVE-2020-29018 was published May 24, 2022
A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to... High Unreviewed
CVE-2021-30145 was published May 24, 2022
IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is... High Unreviewed
CVE-2021-29740 was published May 24, 2022
In Weidmueller Industrial WLAN devices in multiple versions an exploitable format string... High Unreviewed
CVE-2021-33535 was published May 24, 2022
The calendar module in phpWebSite 0.9.x and earlier allows remote attackers to cause a denial of... High Unreviewed
CVE-2003-0738 was published Apr 29, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode... High Unreviewed
CVE-2022-35880 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode... High Unreviewed
CVE-2022-35879 was published Oct 25, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database