GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,094
Erlang
29
GitHub Actions
19
Go
1,920
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
318 advisories
Filter by severity
Segfault in `simplifyBroadcast` in Tensorflow
Moderate
CVE-2022-23593
was published
for
tensorflow
(pip)
Feb 9, 2022
Type confusion leading to segfault in Tensorflow
Moderate
CVE-2022-21731
was published
for
tensorflow
(pip)
Feb 10, 2022
Assertion failure based denial of service in Tensorflow
Moderate
CVE-2022-21737
was published
for
tensorflow
(pip)
Feb 9, 2022
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could...
High
Unreviewed
CVE-2021-22816
was published
Jan 29, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the processing of...
High
Unreviewed
CVE-2022-22180
was published
Jan 20, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding...
High
Unreviewed
CVE-2022-22171
was published
Jan 20, 2022
An improper check for unusual or exceptional conditions in the HTTP request processing function...
High
Unreviewed
CVE-2022-43393
was published
Jan 11, 2023
StreamRelay.NET.exe ver2.14.0.7 and earlier allows remote attackers to cause a denial of service...
High
Unreviewed
CVE-2017-10894
was published
May 17, 2022
sDNSProxy.exe ver1.1.0.0 and earlier allows remote attackers to cause a denial of service via...
High
Unreviewed
CVE-2017-10895
was published
May 17, 2022
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the NetBIOS dissector could crash. This was...
High
Unreviewed
CVE-2017-17083
was published
May 14, 2022
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the IWARP_MPA dissector could crash. This was...
High
Unreviewed
CVE-2017-17084
was published
May 14, 2022
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the CIP Safety dissector could crash. This was...
High
Unreviewed
CVE-2017-17085
was published
May 14, 2022
The code for downloading files did not properly take care of special characters, which led to an...
Moderate
Unreviewed
CVE-2020-15658
was published
May 24, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol...
Moderate
Unreviewed
CVE-2022-22238
was published
Oct 18, 2022
In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, the openssl extension PEM...
High
Unreviewed
CVE-2017-11144
was published
May 14, 2022
An Improper Check for Unusual or Exceptional Conditions (CWE-754) vulnerability exists in Modicon...
High
Unreviewed
CVE-2019-6811
was published
May 24, 2022
On SRX Series devices, an Improper Check for Unusual or Exceptional Conditions when using...
High
Unreviewed
CVE-2022-22218
was published
Oct 18, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding...
Moderate
Unreviewed
CVE-2022-22227
was published
Oct 18, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability exists in the embedded web...
High
Unreviewed
CVE-2018-7833
was published
May 14, 2022
FastStone Image Viewer 6.5 has an Exception Handler Chain Corrupted issue starting at...
Moderate
Unreviewed
CVE-2018-15815
was published
May 14, 2022
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in is_mmacro() in asm...
Moderate
Unreviewed
CVE-2017-17815
was published
May 14, 2022
The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic...
High
Unreviewed
CVE-2017-1000407
was published
May 14, 2022
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver (on all versions prior to R28.3)...
Moderate
Unreviewed
CVE-2019-5673
was published
May 14, 2022
In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, a crafted PNG file could trigger a crash...
Moderate
Unreviewed
CVE-2017-13142
was published
May 14, 2022
fastify vulnerable to denial of service via malicious Content-Type
High
CVE-2022-39288
was published
for
fastify
(npm)
Oct 11, 2022
ProTip!
Advisories are also available from the
GraphQL API