GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
1,318 advisories
Signature verification vulnerability in Stark Bank ecdsa libraries
High
GHSA-9wx7-jrvc-28mm
was published
for
com.starkbank:ecdsa-java
(Maven)
Nov 8, 2021
Kiwi TCMS Stored Cross-site Scripting via SVG file
High
CVE-2023-27489
was published
for
kiwitcms
(pip)
Mar 30, 2023
Uncontrolled Resource Consumption in asyncua and opcua
High
CVE-2022-25304
was published
for
asyncua
(pip)
Aug 24, 2022
Buffer overflow in `CONV_3D_TRANSPOSE` on TFLite
High
CVE-2022-41894
was published
for
tensorflow
(pip)
Nov 21, 2022
Remote code execution in Apache Airflow Docker's Provider
High
CVE-2022-38362
was published
for
apache-airflow-providers-docker
(pip)
Aug 17, 2022
OS Command Injection in Apache Airflow
High
CVE-2022-41131
was published
for
apache-airflow-providers-apache-hive
(pip)
Nov 22, 2022
Authentication Bypass Using an Alternate Path or Channel and Authentication Bypass by Primary Weakness in rucio-webui
High
GHSA-v988-828w-xvf2
was published
for
rucio-webui
(pip)
Oct 22, 2021
Out-of-bounds Write in OpenCV
High
CVE-2019-5064
was published
for
opencv-contrib-python
(pip)
Oct 12, 2021
TensorFlow has double free in Fractional(Max/Avg)Pool
High
CVE-2023-25801
was published
for
tensorflow
(pip)
Mar 24, 2023
ProTip!
Advisories are also available from the
GraphQL API