GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
95 advisories
Filter by severity
Heap-based Buffer Overflow in sqlite-vec
High
CVE-2024-46488
was published
for
sqlite-vec
(RubyGems)
Sep 25, 2024
Heap-based Buffer Overflow in MicroPython
Moderate
CVE-2024-8946
was published
for
micropython-copy
(pip)
Sep 17, 2024
heap-buffer-overflow in MicroPython
Moderate
CVE-2024-8948
was published
for
micropython-copy
(pip)
Sep 17, 2024
opencv-python bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863
High
GHSA-qr4w-53vh-m672
was published
for
opencv-python
(pip)
Aug 30, 2024
opencv-contrib-python bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863
High
GHSA-cxjf-x6jp-p7mc
was published
for
opencv-contrib-python
(pip)
Aug 30, 2024
opencv-python-headless bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863
High
GHSA-jh2j-j4j9-crg3
was published
for
opencv-python-headless
(pip)
Aug 30, 2024
opencv-contrib-python-headless bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863
High
GHSA-w2pj-9cgh-mq2c
was published
for
opencv-contrib-python-headless
(pip)
Aug 30, 2024
concat built-in can corrupt memory in vyper
High
CVE-2024-22419
was published
for
vyper
(pip)
Jan 19, 2024
PaddlePaddle stack overflow in paddle.searchsorted
High
CVE-2023-52304
was published
for
PaddlePaddle
(pip)
Jan 3, 2024
PaddlePaddle stack overflow in paddle.linalg.lu_unpack
High
CVE-2023-52307
was published
for
PaddlePaddle
(pip)
Jan 3, 2024
PaddlePaddle heap buffer overflow in paddle.repeat_interleave
High
CVE-2023-52309
was published
for
PaddlePaddle
(pip)
Jan 3, 2024
Werkzeug DoS: High resource usage when parsing multipart/form-data containing a large part with CR/LF character at the beginning
Moderate
CVE-2023-46136
was published
for
werkzeug
(pip)
Oct 25, 2023
Vyper vulnerable to memory corruption in certain builtins utilizing `msize`
High
CVE-2023-42443
was published
for
vyper
(pip)
Sep 20, 2023
libwebp: OOB write in BuildHuffmanTable
High
CVE-2023-4863
was published
for
Pillow
(Go)
Sep 12, 2023
Heap-based buffer overflow in ZBar
Critical
CVE-2023-40889
was published
for
zbar
(pip)
Aug 29, 2023
Heap buffer overflow in PaddlePaddle
High
CVE-2023-38671
was published
for
paddlepaddle
(pip)
Jul 26, 2023
Vyper vulnerable to OOB DynArray access when array is on both LHS and RHS of an assignment
High
CVE-2023-31146
was published
for
vyper
(pip)
May 12, 2023
TensorFlow has segmentation fault in tfg-translate
High
CVE-2023-25671
was published
for
tensorflow
(pip)
Mar 24, 2023
Out of bounds write in grappler in Tensorflow
High
CVE-2022-41902
was published
for
tensorflow
(pip)
Nov 21, 2022
FractionalMaxPool and FractionalAVGPool heap out-of-bounds acess
High
CVE-2022-41900
was published
for
tensorflow
(pip)
Nov 21, 2022
LIEF heap buffer overflow in the LIEF::MachO::BinaryParser::parse_dyldinfo_generic_bind
High
CVE-2022-43171
was published
for
lief
(pip)
Nov 18, 2022
TensorFlow vulnerable to OOB write in `scatter_nd` in TF Lite
High
CVE-2022-35939
was published
for
tensorflow
(pip)
Sep 16, 2022
LIEF vulnerable to heap based buffer overflow via print_binary function
High
CVE-2022-38495
was published
for
lief
(pip)
Sep 14, 2022
LIEF vulnerable to heap based buffer overflow
Moderate
CVE-2022-38306
was published
for
lief
(pip)
Sep 14, 2022
Heap buffer overflow due to incorrect hash function in TensorFlow
Moderate
CVE-2022-29210
was published
for
tensorflow
(pip)
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API