Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,577 advisories

Loading
Missing validation causes `TensorSummaryV2` to crash Moderate
CVE-2022-29193 was published for tensorflow (pip) May 24, 2022
Multiple denial of service vulnerabilities exist in the cgiserver.cgi JSON command parser... High Unreviewed
CVE-2021-44375 was published Apr 15, 2022
Multiple denial of service vulnerabilities exist in the cgiserver.cgi JSON command parser... High Unreviewed
CVE-2021-44366 was published Apr 15, 2022
Notable before 1.9.0-beta.8 doesn't effectively prevent the opening of executable files when... High Unreviewed
CVE-2022-29281 was published Apr 16, 2022
A vulnerability in the packet processing functionality of Cisco TelePresence Collaboration... High Unreviewed
CVE-2022-20783 was published Apr 22, 2022
phpCAS before 1.1.2 allows remote authenticated users to hijack sessions via a query string... Moderate Unreviewed
CVE-2010-2795 was published May 17, 2022
Dell EMC iDRAC8 versions 2.81.81 and earlier contain a denial of service vulnerability. A remote... High Unreviewed
CVE-2022-24423 was published Apr 22, 2022
Apple iOS before 8.4.1 and OS X before 10.10.5 allow local users to bypass a code-signing... High Unreviewed
CVE-2015-3805 was published May 17, 2022
Apple iOS before 8.4.1 and OS X before 10.10.5 allow local users to bypass a code-signing... High Unreviewed
CVE-2015-3802 was published May 17, 2022
Missing validation causes denial of service via `StagePeek` Moderate
CVE-2022-29195 was published for tensorflow (pip) May 24, 2022
A vulnerability in the XSI-Actions interface of Cisco BroadWorks Application Server could allow... Moderate Unreviewed
CVE-2021-1562 was published May 24, 2022
Missing validation results in undefined behavior in `SparseTensorDenseAdd Moderate
CVE-2022-29206 was published for tensorflow (pip) May 24, 2022
Undefined behavior when users supply invalid resource handles Moderate
CVE-2022-29207 was published for tensorflow (pip) May 24, 2022
Missing validation causes denial of service via `LoadAndRemapMatrix` Moderate
CVE-2022-29199 was published for tensorflow (pip) May 24, 2022
A potential vulnerability in the SMI callback function used in the SMBIOS event log driver in... High Unreviewed
CVE-2021-4211 was published Apr 23, 2022
Imporoper path validation in elFinder.NetCore Critical
CVE-2021-23427 was published for elFinder.NetCore (NuGet) Sep 2, 2021
A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an... High Unreviewed
CVE-2021-1448 was published May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote... High Unreviewed
CVE-2021-1506 was published May 24, 2022
Improper input validation vulnerability in XPLATFORM's execBrowser method can cause execute... High Unreviewed
CVE-2021-26626 was published Apr 20, 2022
A potential vulnerability in LenovoVariable SMI Handler due to insufficient validation in some... High Unreviewed
CVE-2021-3970 was published Apr 23, 2022
A potential vulnerability in the SMI callback function used in the Legacy BIOS mode driver in... High Unreviewed
CVE-2021-4212 was published Apr 23, 2022
Missing validation crashes `QuantizeAndDequantizeV4Grad` Moderate
CVE-2022-29192 was published for tensorflow (pip) May 24, 2022
Improper Input Validation in Mortbay Jetty Moderate
CVE-2006-2759 was published for org.mortbay.jetty:jetty (Maven) May 1, 2022
Improper input validation in Mort Bay Jetty High
CVE-2009-4611 was published for org.mortbay.jetty:jetty (Maven) May 2, 2022
Missing validation causes denial of service via `UnsortedSegmentJoin` Moderate
CVE-2022-29197 was published for tensorflow (pip) May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database