GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
15 advisories
Filter by severity
NLnet Labs Routinator has Reachable Assertion vulnerability
High
CVE-2022-3029
was published
for
routinator
(Rust)
Sep 14, 2022
shiyanhui/dht vulnerable to Uncontrolled Resource Consumption
High
CVE-2020-36562
was published
for
github.com/shiyanhui/dht
(Go)
Dec 28, 2022
Incorrect implementation in streebog
High
CVE-2019-25007
was published
for
streebog
(Rust)
Aug 25, 2021
xml-rs vulnerable to denial of service via invalid token in XML document
High
CVE-2023-34411
was published
for
xml-rs
(Rust)
Jun 5, 2023
Denial of Service via reachable assertion
High
CVE-2022-24777
was published
for
github.com/grpc/grpc-swift
(Swift)
Jun 9, 2023
Assertion failure based denial of service in Tensorflow
High
CVE-2022-21737
was published
for
tensorflow
(pip)
Feb 9, 2022
Reachable Assertion in Tensorflow
High
CVE-2022-23564
was published
for
tensorflow
(pip)
Feb 9, 2022
`CHECK`-fails when building invalid tensor shapes in Tensorflow
High
CVE-2022-23569
was published
for
tensorflow
(pip)
Feb 9, 2022
Reachable Assertion in Tensorflow
High
CVE-2022-23571
was published
for
tensorflow
(pip)
Feb 9, 2022
Crash when type cannot be specialized in Tensorflow
High
CVE-2022-23572
was published
for
tensorflow
(pip)
Feb 9, 2022
rPGP Panics on Malformed Untrusted Input
High
CVE-2024-53856
was published
for
pgp
(Rust)
Dec 5, 2024
ProTip!
Advisories are also available from the
GraphQL API