GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
300 advisories
Filter by severity
A use of externally-controlled format string in Fortinet FortiAnalyzer versions 7.4.0 through 7.4...
High
Unreviewed
CVE-2024-45330
was published
Oct 8, 2024
A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE)...
High
Unreviewed
CVE-2024-39529
was published
Jul 11, 2024
Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11 and earlier, and PAN-OS 8.1.2...
High
Unreviewed
CVE-2019-1579
was published
May 24, 2022
Format String vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS...
High
Unreviewed
CVE-2018-0175
was published
May 13, 2022
Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain...
High
Unreviewed
CVE-2005-1394
was published
May 1, 2022
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: dbg-tlv:...
Critical
Unreviewed
CVE-2024-35845
was published
May 17, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable...
Moderate
Unreviewed
CVE-2024-4641
was published
Jun 25, 2024
Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-6145
was published
Jun 19, 2024
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4,...
Moderate
Unreviewed
CVE-2023-36640
was published
May 14, 2024
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.5,...
Moderate
Unreviewed
CVE-2023-45583
was published
May 14, 2024
Foxit PDF Reader print Method Use of Externally-Controlled Format String Information Disclosure...
Low
Unreviewed
CVE-2021-34970
was published
May 8, 2024
Use of Externally-Controlled Format String vulnerability in Merge DICOM Toolkit C/C++ on Windows....
Moderate
Unreviewed
CVE-2024-23914
was published
May 3, 2024
In the standard library in Rust before 1.50.3, there is an optimization for joining strings that...
High
Unreviewed
CVE-2020-36323
was published
May 24, 2022
A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.1 and...
Moderate
Unreviewed
CVE-2023-48784
was published
Apr 9, 2024
A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for...
High
Unreviewed
CVE-2022-26941
was published
Oct 19, 2023
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within...
High
Unreviewed
CVE-2023-41349
was published
Sep 18, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This...
Critical
Unreviewed
CVE-2023-35087
was published
Jul 21, 2023
A format string vulnerability in the Zyxel ATP series firmware versions 5.10 through 5.36 Patch 2...
High
Unreviewed
CVE-2023-33011
was published
Jul 17, 2023
A use of externally-controlled format string in Fortinet FortiOS version 7.2.0 through 7.2.4,...
High
Unreviewed
CVE-2022-43953
was published
Jun 13, 2023
On Triangle MicroWorks' SCADA Data Gateway version <= v5.01.03, an unauthenticated attacker can...
Critical
Unreviewed
CVE-2023-2186
was published
Jun 7, 2023
Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May...
High
Unreviewed
CVE-2023-21497
was published
May 4, 2023
A format string vulnerability in a binary of the Zyxel NBG-418N v2 firmware versions prior to V1...
Moderate
Unreviewed
CVE-2023-22923
was published
May 1, 2023
A valid, authenticated user may be able to trigger a denial of service of the XCC web user...
High
Unreviewed
CVE-2023-25492
was published
May 1, 2023
This vulnerability allows remote attackers to disclose sensitive information on affected...
Moderate
Unreviewed
CVE-2019-13318
was published
May 24, 2022
cPanel before 60.0.25 allows format-string injection in exception-message handling (SEC-171).
High
Unreviewed
CVE-2016-10773
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API