Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,717
Maven
5,000+
npm
4,328
NuGet
761
pip
4,105
Pub
12
RubyGems
958
Rust
1,065
Swift
45
Unreviewed advisories
All unreviewed
5,000+

332 advisories

Loading
Forwarding of confidentials headers to third parties in fluture-node Low
CVE-2022-24719 was published for fluture-node (npm) Mar 1, 2022
Arbitrary file deletion in NeMo ASR webapp Low
GHSA-rpx7-33j2-xx9x was published for nemo_toolkit (pip) Feb 15, 2022
haby0
Credited to haby0
Argument Injection in Ansible Low
CVE-2020-1738 was published for ansible (pip) Feb 9, 2022
Exposure of Resource to Wrong Sphere and Insecure Temporary File in Ansible Low
CVE-2020-10744 was published for ansible (pip) Feb 9, 2022
Withdrawn: Code Injection in loguru Low
CVE-2022-0329 was published for loguru (pip) Jan 28, 2022 withdrawn
Open Redirect in Flask-Security-Too Low
GHSA-gxjj-f44v-qm94 was published for Flask-Security-Too (pip) Dec 14, 2021 withdrawn
Adding a private/unlisted room to a community exposes room metadata in an unauthorised manner. Low
CVE-2021-39163 was published for matrix-synapse (pip) Sep 1, 2021
0xkasper
Credited to 0xkasper
Improper authorisation of members discloses room membership to non-members Low
CVE-2021-39164 was published for matrix-synapse (pip) Sep 1, 2021
0xkasper
Credited to 0xkasper
Temporary urls leaked via logging Low
CVE-2017-8761 was published for swift (pip) Jun 8, 2021
Segfault in `tf.raw_ops.SparseCountSparseOutput` Low
CVE-2021-29619 was published for tensorflow (pip) May 21, 2021
Crash in `tf.transpose` with complex inputs Low
CVE-2021-29618 was published for tensorflow (pip) May 21, 2021
Crash in `tf.strings.substr` due to `CHECK`-fail Low
CVE-2021-29617 was published for tensorflow (pip) May 21, 2021
Null dereference in Grappler's `TrySimplify` Low
CVE-2021-29616 was published for tensorflow (pip) May 21, 2021
Stack overflow in `ParseAttrValue` with nested tensors Low
CVE-2021-29615 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow in `BandedTriangularSolve` Low
CVE-2021-29612 was published for tensorflow (pip) May 21, 2021
Incomplete validation in `SparseReshape` Low
CVE-2021-29611 was published for tensorflow (pip) May 21, 2021
Invalid validation in `QuantizeAndDequantizeV2` Low
CVE-2021-29610 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of hashtable lookup Low
CVE-2021-29604 was published for tensorflow (pip) May 21, 2021
Heap OOB write in TFLite Low
CVE-2021-29603 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of `DepthwiseConv` Low
CVE-2021-29602 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of `OneHot` Low
CVE-2021-29600 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of Split Low
CVE-2021-29599 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of `SVDF` Low
CVE-2021-29598 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of `SpaceToBatchNd` Low
CVE-2021-29597 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of `EmbeddingLookup` Low
CVE-2021-29596 was published for tensorflow (pip) May 21, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database