GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
62 advisories
Filter by severity
NULL Pointer Dereference in HyperLedger Fabric
High
CVE-2021-43667
was published
for
github.com/hyperledger/fabric
(Go)
May 25, 2022
Socket.IO-client Java before 2.0.1 vulnerable to NULL Pointer Dereference
High
CVE-2022-25867
was published
for
io.socket:socket.io-client
(Maven)
Aug 3, 2022
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat
High
CVE-2020-13934
was published
for
org.apache.tomcat:tomcat
(Maven)
Feb 8, 2022
NULL Pointer Dereference in OpenCV.
High
CVE-2019-14493
was published
for
opencv-contrib-python
(pip)
Oct 12, 2021
Unchecked return value from xmlTextReaderExpand
High
CVE-2022-23476
was published
for
nokogiri
(RubyGems)
Dec 8, 2022
Unchecked Return Value to NULL Pointer Dereference in PDFDocumentHandler.cpp
High
CVE-2022-39381
was published
for
hummus
(npm)
Nov 2, 2022
Nil dereference in NATS JWT, DoS of nats-server
High
CVE-2020-26521
was published
for
github.com/nats-io/jwt
(Go)
Feb 11, 2022
`openssl` `X509Extension::new` and `X509Extension::new_nid` null pointer dereference
High
GHSA-6hcf-g6gr-hhcr
was published
for
openssl
(Rust)
Mar 24, 2023
TensorFlow has null dereference on ParallelConcat with XLA
High
CVE-2023-25676
was published
for
tensorflow
(pip)
Mar 24, 2023
TensorFlow vulnerable to seg fault in `tf.raw_ops.Print`
High
CVE-2023-25660
was published
for
tensorflow
(pip)
Mar 24, 2023
TensorFlow has Null Pointer Error in TensorArrayConcatV2
High
CVE-2023-25663
was published
for
tensorflow
(pip)
Mar 24, 2023
TensorFlow has Null Pointer Error in SparseSparseMaximum
High
CVE-2023-25665
was published
for
tensorflow
(pip)
Mar 24, 2023
TensorFlow has Null Pointer Error in LookupTableImportV2
High
CVE-2023-25672
was published
for
tensorflow
(pip)
Mar 24, 2023
TensorFlow has Null Pointer Error in QuantizedMatMulWithBiasAndDequantize
High
CVE-2023-25670
was published
for
tensorflow
(pip)
Mar 24, 2023
TensorFlow has Null Pointer Error in RandomShuffle with XLA enable
High
CVE-2023-25674
was published
for
tensorflow
(pip)
Mar 24, 2023
Null pointer deference in openssl-src
High
CVE-2020-1967
was published
for
openssl-src
(Rust)
Aug 25, 2021
ActiveRecord in Ruby on Rails allows database-query bypass
High
CVE-2016-6317
was published
for
activerecord
(RubyGems)
Oct 24, 2017
Nokogiri NULL Pointer Dereference
High
CVE-2018-14404
was published
for
nokogiri
(RubyGems)
Jan 17, 2019
Nil dereference in NATS JWT causing DoS of nats-server
High
GHSA-hmm9-r2m2-qg9w
was published
for
github.com/nats-io/jwt
(Go)
May 21, 2021
Go Ethereum Denial of Service
High
CVE-2018-19184
was published
for
github.com/ethereum/go-ethereum
(Go)
Jun 29, 2021
ProTip!
Advisories are also available from the
GraphQL API