GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,408

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

318 advisories

Filter by severity

Sort by

Least recently updated

Format string vulnerability in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51... High Unreviewed

CVE-2011-0270 was published May 17, 2022

A Format String vulnerability exists in DrayTek Vigor 2960 <= 1.5.1.3, DrayTek Vigor 3900 <= 1.5... Critical Unreviewed

CVE-2021-42911 was published Mar 30, 2022

ASUS RT-AX88U has a Format String vulnerability, which allows an unauthenticated remote attacker... Critical Unreviewed

CVE-2022-26674 was published Apr 23, 2022

Pivotal RabbitMQ is vulnerable to a denial of service attack High

CVE-2019-11287 was published for RabbitMQ (Erlang) May 24, 2022

Format string vulnerability in panoFileOutputNamesCreate() in libpano13 2.9.20~rc2+dfsg-3 and... Critical Unreviewed

CVE-2021-20307 was published May 24, 2022

The silc_asn1_encoder function in lib/silcasn1/silcasn1_encode.c in Secure Internet Live... Moderate Unreviewed

CVE-2008-7159 was published May 17, 2022

The web management interface in 3Com Wireless 8760 Dual Radio 11a/b/g PoE Access Point allows... High Unreviewed

CVE-2008-6395 was published May 17, 2022

The zmq3 input and output modules in rsyslog before 8.28.0 interpreted description fields as... Critical Unreviewed

CVE-2017-12588 was published May 17, 2022

The voice wakeup module has a vulnerability of using externally-controlled format strings.... High Unreviewed

CVE-2022-31753 was published Jun 14, 2022

Multiple format string vulnerabilities in the SSI filter in Xitami Web Server 2.5c2, and possibly... High Unreviewed

CVE-2008-6520 was published May 17, 2022

An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue... High Unreviewed

CVE-2017-2403 was published May 17, 2022

A vulnerability in the DHCP code for the Zero Touch Provisioning feature of Cisco ASR 920 Series... High Unreviewed

CVE-2017-3859 was published May 17, 2022

CloudView NMS before 2.10a has a format string issue exploitable over SNMP. Critical Unreviewed

CVE-2016-5074 was published May 17, 2022

Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code. High Unreviewed

CVE-2015-8107 was published May 17, 2022

Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue... Critical Unreviewed

CVE-2015-7271 was published May 17, 2022

Format string vulnerability in Cisco Email Security Appliance (ESA) 7.6.0 and 8.0.0 allows remote... Moderate Unreviewed

CVE-2015-6285 was published May 17, 2022

Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary... High Unreviewed

CVE-2017-5613 was published May 17, 2022

A vulnerability was found in multimon-ng. It has been rated as critical. This issue affects the... Critical Unreviewed

CVE-2020-36619 was published Dec 19, 2022

Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System... High Unreviewed

CVE-2013-4258 was published May 17, 2022

Multiple format string vulnerabilities in mcrypt 2.6.8 and earlier might allow user-assisted... Moderate Unreviewed

CVE-2012-4426 was published May 17, 2022

Format string vulnerability in the _vsnsprintf function in rrobotd.exe in the Device Manager in... High Unreviewed

CVE-2013-0929 was published May 17, 2022

Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10... High Unreviewed

CVE-2015-8106 was published May 17, 2022

Format string vulnerability in the up.time client in Idera Uptime Infrastructure Monitor 6.0 and... Moderate Unreviewed

CVE-2015-2894 was published May 17, 2022

Format string vulnerability in the token processing system (pki-tps) in Red Hat Certificate... High Unreviewed

CVE-2013-1886 was published May 17, 2022

Format string vulnerability in the rrdtool module 1.4.7 for Python, as used in Zenoss, allows... Moderate Unreviewed

CVE-2013-2131 was published May 17, 2022

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

318 advisories