Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

50 advisories

Loading
Segfault in Tensorflow Moderate
CVE-2020-15200 was published for tensorflow (pip) Sep 25, 2020
Heap buffer overflow in Tensorflow Moderate
CVE-2020-15201 was published for tensorflow (pip) Sep 25, 2020
Out of bounds access in tensorflow-lite Moderate
CVE-2020-15211 was published for tensorflow (pip) Sep 25, 2020
Segmentation fault in tensorflow-lite Moderate
CVE-2020-15210 was published for tensorflow (pip) Sep 25, 2020
Heap buffer overflow in CefSharp Moderate
CVE-2020-15999 was published for CefSharp.Common (NuGet) Oct 27, 2020
Reflected Cross-site Scripting (XSS) in ACS Commons Moderate
CVE-2021-21043 was published for com.adobe.acs:acs-aem-commons (Maven) May 13, 2021
Memory corruption in `DrawBoundingBoxesV2` Moderate
CVE-2021-29571 was published for tensorflow (pip) May 21, 2021
Incomplete validation in `SparseAdd` Moderate
CVE-2021-29609 was published for tensorflow (pip) May 21, 2021
Data races in try-mutex Moderate
CVE-2020-35924 was published for try-mutex (Rust) Aug 25, 2021
Data races in reffers Moderate
CVE-2020-36203 was published for reffers (Rust) Aug 25, 2021
Data race in may_queue Moderate
CVE-2020-36217 was published for may_queue (Rust) Aug 25, 2021
Data race in eventio Moderate
CVE-2020-36216 was published for eventio (Rust) Aug 25, 2021
Data race in va-ts Moderate
CVE-2020-36220 was published for va-ts (Rust) Aug 25, 2021
Out-of-bounds read/write and invalid free with `externref`s and GC safepoints in Wasmtime Moderate
CVE-2021-39218 was published for wasmtime (Rust) Sep 20, 2021
cfallin fitzgen
Out-of-bounds Write in OpenCV Moderate
CVE-2017-14136 was published for opencv-contrib-python (pip) Oct 12, 2021
Out-of-bounds Write in OpenCV. Moderate
CVE-2018-5268 was published for opencv-contrib-python (pip) Oct 12, 2021
Heap buffer overflow in `Transpose` Moderate
CVE-2021-41216 was published for tensorflow (pip) Nov 10, 2021
Out-of-bounds Write in nix Moderate
CVE-2021-45707 was published for nix (Rust) Jan 6, 2022
Polyhistorian
UltraJSON vulnerable to Out-of-bounds Write Moderate
CVE-2021-45958 was published for ujson (pip) Jan 21, 2022
JustAnotherArchivist
Out-of-bounds Write in iText Moderate
CVE-2022-24197 was published for com.itextpdf:itext7-core (Maven) Feb 2, 2022
ChakraCore information disclosure vulnerability Moderate
CVE-2018-0939 was published for Microsoft.ChakraCore (NuGet) May 13, 2022
Heap buffer overflow due to incorrect hash function in TensorFlow Moderate
CVE-2022-29210 was published for tensorflow (pip) May 24, 2022
org.apache.activemq:artemis-core-client Vulnerable to Out-of-Bounds Write Moderate
CVE-2021-4040 was published for org.apache.activemq:artemis-core-client (Maven) Aug 25, 2022
snakeYAML before 1.32 vulnerable to Denial of Service due to Out-of-bounds Write Moderate
CVE-2022-38752 was published for org.yaml:snakeyaml (Maven) Sep 6, 2022
mprins
snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write Moderate
CVE-2022-38750 was published for org.yaml:snakeyaml (Maven) Sep 6, 2022
ProTip! Advisories are also available from the GraphQL API