GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
315 advisories
Filter by severity
On Audi A7 MMI 2014 vehicles, the Bluetooth stack in Audi A7 MMI Multiplayer with version (N...
High
Unreviewed
CVE-2020-27524
was published
May 24, 2022
Wire before 2020-10-16 allows remote attackers to cause a denial of service (application crash)...
Critical
Unreviewed
CVE-2020-27853
was published
May 24, 2022
AnyDesk before 5.5.3 on Linux and FreeBSD has a format string vulnerability that can be exploited...
High
Unreviewed
CVE-2020-13160
was published
May 24, 2022
An exploitable format string vulnerability exists in the iw_console conio_writestr functionality...
Moderate
Unreviewed
CVE-2019-5143
was published
May 24, 2022
Pivotal RabbitMQ is vulnerable to a denial of service attack
High
CVE-2019-11287
was published
for
RabbitMQ
(Erlang)
May 24, 2022
An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to cause a denial of...
Moderate
Unreviewed
CVE-2019-18420
was published
May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
Moderate
Unreviewed
CVE-2019-13318
was published
May 24, 2022
A Format String: CWE-134 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX...
Critical
Unreviewed
CVE-2019-6840
was published
May 24, 2022
cPanel before 60.0.25 allows format-string injection in exception-message handling (SEC-171).
High
Unreviewed
CVE-2016-10773
was published
May 24, 2022
Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11 and earlier, and PAN-OS 8.1.2...
High
Unreviewed
CVE-2019-1579
was published
May 24, 2022
The ABB IDAL HTTP server mishandles format strings in a username or cookie during the...
High
Unreviewed
CVE-2019-7228
was published
May 24, 2022
The ABB IDAL FTP server mishandles format strings in a username during the authentication process...
High
Unreviewed
CVE-2019-7230
was published
May 24, 2022
An issue was discovered in scopd on Motorola routers CX2 1.01 and M2 1.01. There is a Use of an...
Critical
Unreviewed
CVE-2019-12297
was published
May 24, 2022
Format string vulnerability in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows...
High
Unreviewed
CVE-2018-14713
was published
May 24, 2022
Multiple format string vulnerabilities in the python module in RRDtool, as used in Zenoss Core...
High
Unreviewed
CVE-2014-6262
was published
May 17, 2022
Multiple format string vulnerabilities in White_Dune before 0.29beta851 have unspecified impact...
High
Unreviewed
CVE-2008-7228
was published
May 17, 2022
Format string vulnerability in authcfg.cgi in Accoria Web Server (aka Rock Web Server) 1.4.7...
High
Unreviewed
CVE-2010-2271
was published
May 17, 2022
Format string vulnerability in PackageKit in Apple Mac OS X 10.6.x before 10.6.6 allows man-in...
Moderate
Unreviewed
CVE-2010-4013
was published
May 17, 2022
Multiple format string vulnerabilities in the phar extension in PHP 5.3 before 5.3.2 allow...
Moderate
Unreviewed
CVE-2010-2094
was published
May 17, 2022
Multiple format string vulnerabilities in AppleScript in Apple Mac OS X before 10.6.7 allow...
Moderate
Unreviewed
CVE-2011-0173
was published
May 17, 2022
Format string vulnerability in RealNetworks Helix Server 12.x, 13.x, and 14.x before 14.2, and...
High
Unreviewed
CVE-2010-4235
was published
May 17, 2022
Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows...
Moderate
Unreviewed
CVE-2010-2950
was published
May 17, 2022
Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail...
High
Unreviewed
CVE-2011-2475
was published
May 17, 2022
Format string vulnerability in the logText function in shmemmgr9.dll in IGSSdataServer.exe 9.00...
High
Unreviewed
CVE-2011-1568
was published
May 17, 2022
Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS...
Moderate
Unreviewed
CVE-2011-0185
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API