GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
14 advisories
Filter by severity
Denial of Service via reachable assertion
High
CVE-2022-24777
was published
for
github.com/grpc/grpc-swift
(Swift)
Jun 9, 2023
xml-rs vulnerable to denial of service via invalid token in XML document
High
CVE-2023-34411
was published
for
xml-rs
(Rust)
Jun 5, 2023
shiyanhui/dht vulnerable to Uncontrolled Resource Consumption
High
CVE-2020-36562
was published
for
github.com/shiyanhui/dht
(Go)
Dec 28, 2022
NLnet Labs Routinator has Reachable Assertion vulnerability
High
CVE-2022-3029
was published
for
routinator
(Rust)
Sep 14, 2022
Reachable Assertion in Tensorflow
High
CVE-2022-23564
was published
for
tensorflow
(pip)
Feb 9, 2022
Assertion failure based denial of service in Tensorflow
High
CVE-2022-21737
was published
for
tensorflow
(pip)
Feb 9, 2022
`CHECK`-fails when building invalid tensor shapes in Tensorflow
High
CVE-2022-23569
was published
for
tensorflow
(pip)
Feb 9, 2022
Reachable Assertion in Tensorflow
High
CVE-2022-23571
was published
for
tensorflow
(pip)
Feb 9, 2022
Crash when type cannot be specialized in Tensorflow
High
CVE-2022-23572
was published
for
tensorflow
(pip)
Feb 9, 2022
Incorrect implementation in streebog
High
CVE-2019-25007
was published
for
streebog
(Rust)
Aug 25, 2021
ProTip!
Advisories are also available from the
GraphQL API