GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,055
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,605
NuGet
638
pip
3,208
Pub
10
RubyGems
852
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,125 advisories
Filter by severity
Division by zero in TFLite's implementation of `DepthwiseConv`
Low
CVE-2021-29602
was published
for
tensorflow
(pip)
May 21, 2021
Division by zero in TFLite's implementation of `OneHot`
Low
CVE-2021-29600
was published
for
tensorflow
(pip)
May 21, 2021
Division by zero in TFLite's implementation of Split
Low
CVE-2021-29599
was published
for
tensorflow
(pip)
May 21, 2021
Division by zero in TFLite's implementation of `SVDF`
Low
CVE-2021-29598
was published
for
tensorflow
(pip)
May 21, 2021
Division by zero in TFLite's implementation of `SpaceToBatchNd`
Low
CVE-2021-29597
was published
for
tensorflow
(pip)
May 21, 2021
Division by zero in TFLite's implementation of `EmbeddingLookup`
Low
CVE-2021-29596
was published
for
tensorflow
(pip)
May 21, 2021
Division by zero in TFLite's convolution code
Low
CVE-2021-29594
was published
for
tensorflow
(pip)
May 21, 2021
Division by zero in TFLite's implementation of `BatchToSpaceNd`
Low
CVE-2021-29593
was published
for
tensorflow
(pip)
May 21, 2021
Heap OOB read in TFLite's implementation of `Minimum` or `Maximum`
Low
CVE-2021-29590
was published
for
tensorflow
(pip)
May 21, 2021
Division by zero in TFLite's implementation of `GatherNd`
Low
CVE-2021-29589
was published
for
tensorflow
(pip)
May 21, 2021
Hwameistor Potential Permission Leakage of Cluster Level
Low
CVE-2024-45054
was published
for
github.com/hwameistor/hwameistor
(Go)
Aug 29, 2024
Division by zero in TFLite's implementation of `TransposeConv`
Low
CVE-2021-29588
was published
for
tensorflow
(pip)
May 21, 2021
Division by zero in TFLite's implementation of `SpaceToDepth`
Low
CVE-2021-29587
was published
for
tensorflow
(pip)
May 21, 2021
Division by zero in optimized pooling implementations in TFLite
Low
CVE-2021-29586
was published
for
tensorflow
(pip)
May 21, 2021
Division by zero in padding computation in TFLite
Low
CVE-2021-29585
was published
for
tensorflow
(pip)
May 21, 2021
Withdrawn Advisory: Stored Cross-site scripting affecting automad/automad
Low
CVE-2023-7035
was published
for
automad/automad
(Composer)
Dec 21, 2023
•
withdrawn
gitoxide-core does not neutralize special characters for terminals
Low
CVE-2024-43785
was published
for
gitoxide
(Rust)
Aug 22, 2024
Mattermost allows team admin user without "Add Team Members" permission to disable invite URL
Low
CVE-2024-40884
was published
for
github.com/mattermost/mattermost/server/v8
(Go)
Aug 22, 2024
CKEditor4 low-risk cross-site scripting (XSS) vulnerability linked to potential domain takeover
Low
CVE-2024-43411
was published
for
ckeditor4
(npm)
Aug 21, 2024
Potential Denial-of-Service in bindata
Low
CVE-2021-32823
was published
for
bindata
(RubyGems)
Jun 23, 2021
Concrete CMS Stored Cross-site Scripting vulnerability
Low
CVE-2024-4350
was published
for
concrete5/concrete5
(Composer)
Aug 12, 2024
Silverpeas vulnerable to password complexity rule bypass
Low
CVE-2024-42850
was published
for
org.silverpeas.core:silverpeas-core
(Maven)
Aug 16, 2024
Authenticated Blind SSRF in automad/automad
Low
CVE-2023-7037
was published
for
automad/automad
(Composer)
Dec 21, 2023
Trufflehog vulnerable to Blind SSRF in some Detectors
Low
CVE-2024-43379
was published
for
github.com/trufflesecurity/trufflehog/v3
(Go)
Aug 19, 2024
Stylelint has vulnerability in semver dependency
Low
GHSA-f7xj-rg7h-mc87
was published
for
stylelint
(npm)
Jul 7, 2023
•
withdrawn
ProTip!
Advisories are also available from the
GraphQL API