Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

263 advisories

Loading
The eID module has a vulnerability that causes the memory to be used without being initialized... High Unreviewed
CVE-2021-40025 was published Jan 11, 2022
Resource Exhaustion Denial of Service in http-proxy-agent Moderate
CVE-2019-10196 was published for http-proxy-agent (npm) Jan 6, 2022
In kd_camera_hw driver, there is a possible information disclosure due to uninitialized data.... Moderate Unreviewed
CVE-2022-20015 was published Jan 5, 2022
OpenZeppelin Contracts initializer reentrancy may lead to double initialization Moderate
CVE-2022-39384 was published for @openzeppelin/contracts (npm) Dec 14, 2021
Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure... Low Unreviewed
CVE-2021-36319 was published Nov 21, 2021
UUPSUpgradeable vulnerability in @openzeppelin/contracts Critical
CVE-2021-41264 was published for @openzeppelin/contracts (npm) Sep 15, 2021
Use of Uninitialized Resource in alg_ds Critical
CVE-2020-36432 was published for alg_ds (Rust) Aug 25, 2021
Interpreter crash from `tf.io.decode_raw` High
CVE-2021-29614 was published for tensorflow (pip) May 21, 2021
Incomplete validation in `tf.raw_ops.CTCLoss` Moderate
CVE-2021-29613 was published for tensorflow (pip) May 21, 2021
Incomplete validation in `SparseReshape` Low
CVE-2021-29611 was published for tensorflow (pip) May 21, 2021
Invalid validation in `QuantizeAndDequantizeV2` Low
CVE-2021-29610 was published for tensorflow (pip) May 21, 2021
Incomplete validation in `SparseAdd` Moderate
CVE-2021-29609 was published for tensorflow (pip) May 21, 2021
Code execution vulnerability in HtmlUnit High
CVE-2020-5529 was published for net.sourceforge.htmlunit:htmlunit (Maven) May 21, 2020
ProTip! Advisories are also available from the GraphQL API