GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,133
Composer 4,080
Erlang 29
GitHub Actions 19
Go 1,908
Maven 5,106
npm 3,642
NuGet 638
pip 3,258
Pub 10
RubyGems 869
Rust 820
Swift 35

Unreviewed advisories

All unreviewed 228,837

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

18 advisories

Filter by severity

Sort by

Least recently updated

Potential Captcha Validate Bypass in flask-session-captcha Moderate

CVE-2022-24880 was published for flask-session-captcha (pip) Apr 26, 2022

Cipher.update_into can corrupt memory if passed an immutable python object as the outbuf Moderate

CVE-2023-23931 was published for cryptography (pip) Feb 7, 2023

Vyper's raw_call `value=` kwargs not disabled for static and delegate calls Moderate

CVE-2024-24567 was published for vyper (pip) Jan 30, 2024

LNbits improperly handles potential network and payment failures when using Eclair backend High

CVE-2024-34694 was published for lnbits (pip) Jun 17, 2024

json2xml Uncaught Exception vulnerability High

CVE-2022-25024 was published for json2xml (pip) Aug 23, 2023

Potential buffer overflow in psd-tools Critical

CVE-2020-10571 was published for psd-tools (pip) Mar 16, 2020

Crash when type cannot be specialized in Tensorflow Moderate

CVE-2022-23572 was published for tensorflow (pip) Feb 9, 2022

Segfault in `simplifyBroadcast` in Tensorflow Moderate

CVE-2022-23593 was published for tensorflow (pip) Feb 9, 2022

Crash due to erroneous `StatusOr` in TensorFlow Moderate

CVE-2022-23590 was published for tensorflow (pip) Feb 9, 2022

Type confusion leading to segfault in Tensorflow Moderate

CVE-2022-21731 was published for tensorflow (pip) Feb 10, 2022

Assertion failure based denial of service in Tensorflow Moderate

CVE-2022-21737 was published for tensorflow (pip) Feb 9, 2022

Incomplete validation in `SparseSparseMinimum` Moderate

CVE-2021-29607 was published for tensorflow (pip) Mar 18, 2022

CHECK-fail in tf.raw_ops.EncodePng Low

CVE-2021-29531 was published for tensorflow (pip) May 21, 2021

CHECK-fail in DrawBoundingBoxes Low

CVE-2021-29533 was published for tensorflow (pip) May 21, 2021

CHECK-fail in SparseConcat Low

CVE-2021-29534 was published for tensorflow (pip) May 21, 2021

CHECK-fail in `QuantizeAndDequantizeV4Grad` Low

CVE-2021-29544 was published for tensorflow (pip) May 21, 2021

Integer truncation in Shard API usage Critical

CVE-2020-15202 was published for tensorflow (pip) Sep 25, 2020

Segmentation faultin TensorFlow when converting a Python string to `tf.float16` High

CVE-2020-5215 was published for tensorflow (pip) Jan 28, 2020

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

18 advisories