Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
45
Go
3,248
Maven
5,000+
npm
5,000+
NuGet
867
pip
4,513
Pub
12
RubyGems
997
Rust
1,189
Swift
51
Unreviewed advisories
All unreviewed
5,000+

35 advisories

Loading
Onnx Out-of-bounds Read vulnerability Moderate
CVE-2024-27319 was published for onnx (pip) Feb 23, 2024
iarspider Credited to iarspider
AstrBot has an arbitrary file read vulnerability in function _encode_image_bs64 Moderate
CVE-2025-57697 was published for AstrBot (pip) Nov 7, 2025
OpenEXR Out of Bounds Heap Read due to Bad Pointer Arithmetic in LossyDctDecoder_execute Moderate
CVE-2025-48072 was published for OpenEXR (pip) Jul 31, 2025
suidpit Credited to suidpit, TheZ3ro, ndaprela, and smaury TheZ3ro TheZ3ro
ndaprela ndaprela smaury smaury
PaddlePaddle segfault in paddle.mode Moderate
CVE-2023-38678 was published for PaddlePaddle (pip) Jan 3, 2024
Capstone SEGV caused by a read memory access Moderate
CVE-2016-7151 was published for capstone (pip) May 24, 2022
Out-of-bounds read/write and invalid free with `externref`s and GC safepoints in Wasmtime Moderate
CVE-2021-39218 was published for wasmtime (pip) Sep 20, 2021
cfallin Credited to cfallin and fitzgen fitzgen fitzgen
wasm3 uncontrolled memory allocation vulnerability Moderate
CVE-2024-27529 was published for github.com/shareup/wasm-interpreter-apple (pip) Nov 9, 2024
Arbitrary memory read in `ImmutableConst` Moderate
CVE-2021-41227 was published for tensorflow (pip) Nov 10, 2021
Heap OOB in `SparseBinCount` Moderate
CVE-2021-41226 was published for tensorflow (pip) Nov 10, 2021
`SparseFillEmptyRows` heap OOB Moderate
CVE-2021-41224 was published for tensorflow (pip) Nov 10, 2021
Heap OOB in `FusedBatchNorm` kernels Moderate
CVE-2021-41223 was published for tensorflow (pip) Nov 10, 2021
Heap OOB read in all `tf.raw_ops.QuantizeAndDequantizeV*` ops Moderate
CVE-2021-41205 was published for tensorflow (pip) Nov 10, 2021
Heap OOB in TFLite's `Gather*` implementations Moderate
CVE-2021-37687 was published for tensorflow (pip) Aug 25, 2021
Heap OOB in TFLite Moderate
CVE-2021-37685 was published for tensorflow (pip) Aug 25, 2021
Heap OOB in `SdcaOptimizerV2` Moderate
CVE-2021-37672 was published for tensorflow (pip) Aug 25, 2021
Heap OOB in `UpperBound` and `LowerBound` Moderate
CVE-2021-37670 was published for tensorflow (pip) Aug 25, 2021
Incomplete validation in `tf.raw_ops.CTCLoss` Moderate
CVE-2021-29613 was published for tensorflow (pip) May 21, 2021
Heap OOB in `RaggedGather` Moderate
CVE-2021-37641 was published for tensorflow (pip) Aug 25, 2021
Heap OOB read in TFLite Moderate
CVE-2021-29606 was published for tensorflow (pip) May 21, 2021
Heap out of bounds access in MakeEdge in TensorFlow Moderate
CVE-2020-26271 was published for tensorflow (pip) Dec 10, 2020
Heap buffer overflow in Tensorflow Moderate
CVE-2020-15196 was published for tensorflow (pip) Sep 25, 2020
Out of bounds access in tensorflow-lite Moderate
CVE-2020-15211 was published for tensorflow (pip) Sep 25, 2020
Exiv2 has an out-of-bounds read in QuickTimeVideo::NikonTagsDecoder Moderate
CVE-2024-24826 was published for exiv2 (pip) Oct 17, 2024
westonsteimel Credited to westonsteimel
Out-of-bounds Read in Pillow Moderate
CVE-2022-22816 was published for Pillow (pip) Jan 12, 2022
tdunlap607 Credited to tdunlap607
Pillow Out-of-bounds Read Moderate
CVE-2020-35655 was published for pillow (pip) Mar 18, 2021
sunSUNQ Credited to sunSUNQ
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database