Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

340 advisories

Loading
Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact... Critical Unreviewed
CVE-2016-4448 was published May 13, 2022
The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to... High Unreviewed
CVE-2018-16554 was published May 13, 2022
Format String vulnerability in KeepKey version 4.0.0 allows attackers to trigger information... High Unreviewed
CVE-2018-6875 was published May 13, 2022
Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an externally controlled format... High Unreviewed
CVE-2018-12590 was published May 13, 2022
The Pulse Secure Desktop (macOS) 5.3RX before 5.3R5 and 9.0R1 has a Format String Vulnerability. Moderate Unreviewed
CVE-2018-15749 was published May 13, 2022
An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5... High Unreviewed
CVE-2019-7711 was published May 13, 2022
An issue was discovered in handler_ipcom_shell_pwd in the Interpeak IPCOMShell TELNET server on... High Unreviewed
CVE-2019-7712 was published May 13, 2022
fmtlib version prior to version 4.1.0 (before commit 0555cea5fc0bf890afe0071a558e44625a34ba85)... High Unreviewed
CVE-2018-1000052 was published May 13, 2022
Format string vulnerability in the Print Spooler service in Microsoft Windows XP SP2 and SP3,... High Unreviewed
CVE-2012-1851 was published May 13, 2022
Multiple format string vulnerabilities in Condor 7.2.0 through 7.6.4, and possibly certain 7.7.x... Moderate Unreviewed
CVE-2011-4930 was published May 13, 2022
It was found that usage of snprintf function in feature/locks translator of glusterfs server 3.8... Moderate Unreviewed
CVE-2018-14661 was published May 13, 2022
Puppet Enterprise 2017.3.x prior to 2017.3.3 are vulnerable to a remote execution bug when a... High Unreviewed
CVE-2018-6508 was published May 13, 2022
Format string vulnerability in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to... High Unreviewed
CVE-2012-0242 was published May 4, 2022
Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote... High Unreviewed
CVE-2006-3628 was published May 3, 2022
Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and... Moderate Unreviewed
CVE-2006-0082 was published May 3, 2022
Multiple format string vulnerabilities in logging functions in mod_auth_pgsql before 2.0.3, when... High Unreviewed
CVE-2005-3656 was published May 3, 2022
Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that... Moderate Unreviewed
CVE-2004-0179 was published May 3, 2022
Multiple format string vulnerabilities in Network Authorization in Apple Mac OS X 10.6 before 10... Moderate Unreviewed
CVE-2010-1376 was published May 2, 2022
Format string vulnerability in vmrun in VMware VIX API 1.6.x, VMware Workstation 6.5.x before 6.5... High Unreviewed
CVE-2010-1139 was published May 2, 2022
Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and... High Unreviewed
CVE-2010-1039 was published May 2, 2022
Multiple format string vulnerabilities in isns.c in (1) Linux SCSI target framework (aka tgt or... Moderate Unreviewed
CVE-2010-0743 was published May 2, 2022
Format string vulnerability in the WebDAV implementation in webservd in Sun Java System Web... High Unreviewed
CVE-2010-0388 was published May 2, 2022
Format string vulnerability in War FTP Daemon (warftpd) 1.82 RC 12 allows remote authenticated... Moderate Unreviewed
CVE-2009-5141 was published May 2, 2022
VMware Authentication Daemon 1.0 in vmware-authd.exe in the VMware Authorization Service in... Moderate Unreviewed
CVE-2009-4811 was published May 2, 2022
Multiple format string vulnerabilities in the tolog function in httpdx 1.4, 1.4.5, 1.4.6, 1.4.6b,... High Unreviewed
CVE-2009-4769 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database