pypi

5,010 tracked vulnerabilities.

CVE-2022-40189 CRITICAL
Apache Airflow < 2.3.0 - OS Command Injection via Pig Provider
Nov 22, 2022
CVSS 9.8
EPSS 0.04
CVE-2022-38649 CRITICAL
Apache Airflow <4.0.0, <2.3.0 - Command Injection
Nov 22, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-43685 HIGH
CKAN < 2.8.12 and 2.9.0-2.9.6 - Unauthenticated Account Takeover via HTTP POST Request
Nov 22, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-4105 MEDIUM
kiwi_tcms < 11.6 - Stored Cross-Site Scripting in Test Plan
Nov 21, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-41911 MEDIUM
TensorFlow < 2.8.4, 2.9.0-2.9.3, 2.10.0-2.10.1 - Denial of Service via Undefined Char-to-Bool Conversion
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41909 MEDIUM
TensorFlow < 2.8.4 - NULL Pointer Dereference in CompositeTensorVariantToComponents
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41908 MEDIUM
TensorFlow < 2.8.4 - Denial of Service via Non-UTF-8 Token in PyFunc
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41907 MEDIUM
TensorFlow < 2.8.4 - Integer Overflow in ResizeNearestNeighborGrad
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41901 MEDIUM
TensorFlow < 2.8.4 - Reachable Assertion in SparseMatrixNNZ
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41900 HIGH
TensorFlow < 2.8.4 - Out-of-bounds Read in FractionalMax(AVG)Pool
Nov 18, 2022
CVSS 7.1
EPSS 0.01
CVE-2022-41899 MEDIUM
TensorFlow < 2.8.4 - Reachable Assertion in SdcaOptimizer
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41898 MEDIUM
TensorFlow < 2.8.4 - Denial of Service via SparseFillEmptyRowsGrad Empty Input
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41897 MEDIUM
TensorFlow < 2.8.4 - Out-of-bounds Read in FractionMaxPoolGrad
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41896 MEDIUM
TensorFlow < 2.8.4 - Denial of Service via ThreadUnsafeUnigramCandidateSampler Input Validation
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41895 MEDIUM
TensorFlow < 2.8.4 - Heap Out-of-Bounds Read in MirrorPadGrad
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41894 HIGH
TensorFlow < 2.8.4 - Buffer Overflow in CONV_3D_TRANSPOSE Reference Kernel
Nov 18, 2022
CVSS 7.1
EPSS 0.01
CVE-2022-41893 MEDIUM
TensorFlow < 2.8.4 - Denial of Service via tf.raw_ops.TensorListResize
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41891 MEDIUM
TensorFlow < 2.8.4 - Denial of Service via TensorListConcat Element Shape Handling
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41890 MEDIUM
TensorFlow < 2.8.4 - Denial of Service via Integer Overflow in BCast::ToShape
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41889 MEDIUM
TensorFlow < 2.8.4 - NULL Pointer Dereference in Quantized Tensor Parsing
Nov 18, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-41888 MEDIUM
TensorFlow < 2.8.4 - Denial of Service via Invalid Scores Input in generate_bounding_box_proposals
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41887 MEDIUM
TensorFlow 2.9.0-2.9.2 - Denial of Service via Integer Overflow in tf.keras.losses.poisson
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41886 MEDIUM
TensorFlow < 2.8.4 - Integer Overflow in ImageProjectiveTransformV2
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41885 MEDIUM
TensorFlow < 2.7.4 - Integer Overflow in FusedResizeAndPadConv2D
Nov 18, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-41884 MEDIUM
TensorFlow < 2.8.4 - Denial of Service via Numpy Array Shape Validation
Nov 18, 2022
CVSS 4.8
EPSS 0.00