Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

318 advisories

Loading
Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail... High Unreviewed
CVE-2011-2475 was published May 17, 2022
Format string vulnerability in the logText function in shmemmgr9.dll in IGSSdataServer.exe 9.00... High Unreviewed
CVE-2011-1568 was published May 17, 2022
Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS... Moderate Unreviewed
CVE-2011-0185 was published May 17, 2022
The silc_http_server_parse function in lib/silchttp/silchttpserver.c in the internal HTTP server... Moderate Unreviewed
CVE-2008-7160 was published May 17, 2022
Multiple format string vulnerabilities in the DCC functionality in KVIrc 3.4 and 4.0 have... High Unreviewed
CVE-2010-2451 was published May 17, 2022
Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4... High Unreviewed
CVE-2012-2288 was published May 17, 2022
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before... High Unreviewed
CVE-2011-1764 was published May 17, 2022
Format string vulnerability in the register_disk function in block/genhd.c in the Linux kernel... Moderate Unreviewed
CVE-2013-2851 was published May 17, 2022
Format string vulnerability in CoreServicesUIAgent in Apple OS X 10.9.x through 10.9.2 allows... Moderate Unreviewed
CVE-2014-1315 was published May 17, 2022
Format string vulnerability in the PROJECT::write_account_file function in client/cs_account.cpp... Moderate Unreviewed
CVE-2013-7386 was published May 17, 2022
Format string vulnerability in the rrdtool module 1.4.7 for Python, as used in Zenoss, allows... Moderate Unreviewed
CVE-2013-2131 was published May 17, 2022
Format string vulnerability in the token processing system (pki-tps) in Red Hat Certificate... High Unreviewed
CVE-2013-1886 was published May 17, 2022
Format string vulnerability in the up.time client in Idera Uptime Infrastructure Monitor 6.0 and... Moderate Unreviewed
CVE-2015-2894 was published May 17, 2022
Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10... High Unreviewed
CVE-2015-8106 was published May 17, 2022
Format string vulnerability in the _vsnsprintf function in rrobotd.exe in the Device Manager in... High Unreviewed
CVE-2013-0929 was published May 17, 2022
Multiple format string vulnerabilities in mcrypt 2.6.8 and earlier might allow user-assisted... Moderate Unreviewed
CVE-2012-4426 was published May 17, 2022
Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System... High Unreviewed
CVE-2013-4258 was published May 17, 2022
Format string vulnerability in Cisco Email Security Appliance (ESA) 7.6.0 and 8.0.0 allows remote... Moderate Unreviewed
CVE-2015-6285 was published May 17, 2022
Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary... High Unreviewed
CVE-2017-5613 was published May 17, 2022
Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue... Critical Unreviewed
CVE-2015-7271 was published May 17, 2022
Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code. High Unreviewed
CVE-2015-8107 was published May 17, 2022
CloudView NMS before 2.10a has a format string issue exploitable over SNMP. Critical Unreviewed
CVE-2016-5074 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue... High Unreviewed
CVE-2017-2403 was published May 17, 2022
A vulnerability in the DHCP code for the Zero Touch Provisioning feature of Cisco ASR 920 Series... High Unreviewed
CVE-2017-3859 was published May 17, 2022
The zmq3 input and output modules in rsyslog before 8.28.0 interpreted description fields as... Critical Unreviewed
CVE-2017-12588 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database