Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,055
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,605
NuGet
638
pip
3,208
Pub
10
RubyGems
852
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,125 advisories

Loading
Division by zero in TFLite's implementation of `DepthwiseConv` Low
CVE-2021-29602 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of `OneHot` Low
CVE-2021-29600 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of Split Low
CVE-2021-29599 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of `SVDF` Low
CVE-2021-29598 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of `SpaceToBatchNd` Low
CVE-2021-29597 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of `EmbeddingLookup` Low
CVE-2021-29596 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's convolution code Low
CVE-2021-29594 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of `BatchToSpaceNd` Low
CVE-2021-29593 was published for tensorflow (pip) May 21, 2021
Heap OOB read in TFLite's implementation of `Minimum` or `Maximum` Low
CVE-2021-29590 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of `GatherNd` Low
CVE-2021-29589 was published for tensorflow (pip) May 21, 2021
Hwameistor Potential Permission Leakage of Cluster Level Low
CVE-2024-45054 was published for github.com/hwameistor/hwameistor (Go) Aug 29, 2024
younaman
Division by zero in TFLite's implementation of `TransposeConv` Low
CVE-2021-29588 was published for tensorflow (pip) May 21, 2021
Division by zero in TFLite's implementation of `SpaceToDepth` Low
CVE-2021-29587 was published for tensorflow (pip) May 21, 2021
Division by zero in optimized pooling implementations in TFLite Low
CVE-2021-29586 was published for tensorflow (pip) May 21, 2021
Division by zero in padding computation in TFLite Low
CVE-2021-29585 was published for tensorflow (pip) May 21, 2021
Withdrawn Advisory: Stored Cross-site scripting affecting automad/automad Low
CVE-2023-7035 was published for automad/automad (Composer) Dec 21, 2023 withdrawn
marcantondahmen
gitoxide-core does not neutralize special characters for terminals Low
CVE-2024-43785 was published for gitoxide (Rust) Aug 22, 2024
EliahKagan
Mattermost allows team admin user without "Add Team Members" permission to disable invite URL Low
CVE-2024-40884 was published for github.com/mattermost/mattermost/server/v8 (Go) Aug 22, 2024
CKEditor4 low-risk cross-site scripting (XSS) vulnerability linked to potential domain takeover Low
CVE-2024-43411 was published for ckeditor4 (npm) Aug 21, 2024
Potential Denial-of-Service in bindata Low
CVE-2021-32823 was published for bindata (RubyGems) Jun 23, 2021
Concrete CMS Stored Cross-site Scripting vulnerability Low
CVE-2024-4350 was published for concrete5/concrete5 (Composer) Aug 12, 2024
Silverpeas vulnerable to password complexity rule bypass Low
CVE-2024-42850 was published for org.silverpeas.core:silverpeas-core (Maven) Aug 16, 2024
Authenticated Blind SSRF in automad/automad Low
CVE-2023-7037 was published for automad/automad (Composer) Dec 21, 2023
marcantondahmen
Trufflehog vulnerable to Blind SSRF in some Detectors Low
CVE-2024-43379 was published for github.com/trufflesecurity/trufflehog/v3 (Go) Aug 19, 2024
abankalarm
Stylelint has vulnerability in semver dependency Low
GHSA-f7xj-rg7h-mc87 was published for stylelint (npm) Jul 7, 2023 withdrawn
romainmenke
ProTip! Advisories are also available from the GraphQL API