GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
343 advisories
Filter by severity
Improper Check for Unusual or Exceptional Conditions in Connect2id Nimbus JOSE+JWT
Critical
CVE-2019-17195
was published
for
com.nimbusds:nimbus-jose-jwt
(Maven)
Oct 16, 2019
Segmentation faultin TensorFlow when converting a Python string to `tf.float16`
Low
CVE-2020-5215
was published
for
tensorflow
(pip)
Jan 28, 2020
Potential buffer overflow in psd-tools
Critical
CVE-2020-10571
was published
for
psd-tools
(pip)
Mar 16, 2020
Integer truncation in Shard API usage
High
CVE-2020-15202
was published
for
tensorflow
(pip)
Sep 25, 2020
Unauthorized client-side property update in UIDL request handler in Vaadin 10 and 11
Low
GHSA-3h5r-928v-mxhh
was published
for
com.vaadin:vaadin-bom
(Maven)
Apr 19, 2021
Unauthorized client-side property update in UIDL request handler in Vaadin 10 and 11
Low
CVE-2018-25007
was published
for
com.vaadin:flow-server
(Maven)
Apr 19, 2021
CHECK-fail in tf.raw_ops.EncodePng
Low
CVE-2021-29531
was published
for
tensorflow
(pip)
May 21, 2021
CHECK-fail in `QuantizeAndDequantizeV4Grad`
Low
CVE-2021-29544
was published
for
tensorflow
(pip)
May 21, 2021
Ory fosite contains Improper Handling of Exceptional Conditions
High
CVE-2020-15223
was published
for
github.com/ory/fosite
(Go)
May 24, 2021
Improper Check for Unusual or Exceptional Conditions in json-smart
Moderate
CVE-2021-27568
was published
for
net.minidev:json-smart
(Maven)
Jun 16, 2021
Unauthorized property update in CheckboxGroup component in Vaadin 12-14 and 15-20
Moderate
CVE-2021-33605
was published
for
com.vaadin:vaadin-checkbox-flow
(Maven)
Aug 30, 2021
Incorrect handling of H2 GOAWAY + SETTINGS frames
High
CVE-2021-39162
was published
for
github.com/pomerium/pomerium
(Go)
Sep 10, 2021
Denial of Service (DoS) in mongo-express
Moderate
CVE-2021-23372
was published
for
mongo-express
(npm)
Oct 6, 2021
Authz Module Non-Determinism
Moderate
CVE-2021-41135
was published
for
github.com/cosmos/cosmos-sdk
(Go)
Oct 21, 2021
Improper check or handling of exception conditions vulnerability in Samsung Pay (US only) prior...
Moderate
Unreviewed
CVE-2021-25525
was published
Dec 9, 2021
Mattermost 6.0 and earlier fails to sufficiently validate the email address during registration,...
Moderate
Unreviewed
CVE-2021-37862
was published
Dec 18, 2021
An Improper Check for Unusual or Exceptional Conditions vulnerability in the processing of...
High
Unreviewed
CVE-2022-22180
was published
Jan 20, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding...
High
Unreviewed
CVE-2022-22171
was published
Jan 20, 2022
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could...
High
Unreviewed
CVE-2021-22816
was published
Jan 29, 2022
Crash when type cannot be specialized in Tensorflow
High
CVE-2022-23572
was published
for
tensorflow
(pip)
Feb 9, 2022
Crash due to erroneous `StatusOr` in TensorFlow
Moderate
CVE-2022-23590
was published
for
tensorflow
(pip)
Feb 9, 2022
ProTip!
Advisories are also available from the
GraphQL API