26517 matches found
aiogithubapi (=23.11.0), pypi-attestation-models (>=0.0.1 <=0.0.5) +2 more potentially affected by CVE-2024-55655 via sigstore (>=2.0.0rc3 <=3.5.6)
sigstore PYPI version =2.0.0rc3, =0.0.1, =0.0.6, =0.1.0, =0.14.0 Source cves: CVE-2024-55655 Source advisory: OSV:GHSA-HHFG-FWRW-87W7...
io.github.shoothzj:http-client-facade (=0.0.1), io.github.taikonaut3:virtue-demo (>=0.0.1-alpha <=1.0.0-alpha) +7 more potentially affected by CVE-2024-53990 via org.asynchttpclient:async-http-client (>=3.0.0.Beta1 <=3.0.0.Beta3)
org.asynchttpclient:async-http-client MAVEN version =3.0.0.Beta1, =0.0.1-alpha, =0.3.1, =0.0.1, =3.0.0-M2, =3.0.0-M1, =3.0.0-M1, =3.0.0-M1, =3.0.0-M1, =3.0.0-RC2 Source cves: CVE-2024-53990 Source advisory: OSV:GHSA-MFJ5-CF8G-G2FV...
org.keycloak:keycloak-guides (>=16.0.0 <=16.1.1), org.keycloak:keycloak-guides-maven-plugin (>=16.0.0 <=16.1.1) +3 more potentially affected by CVE-2024-9666 via org.keycloak:keycloak-quarkus-server (>=16.0.0 <=16.1.1)
org.keycloak:keycloak-quarkus-server MAVEN version =16.0.0, =16.0.0, =16.0.0, =16.0.0, =16.0.0, =16.0.0, =16.1.1 Source cves: CVE-2024-9666 Source advisory: OSV:GHSA-JGWC-JH89-RPGQ...
0x-relayer-cat (>=0.0.2 <=0.0.10), 0xauth (>=0.0.2 <=0.0.6) +8111 more potentially affected by CVE-2024-42461 via elliptic (>=5.2.1 <=6.5.6)
elliptic NPM version =5.2.1, =0.0.2, =0.0.2, =1.0.6, =0.0.1-beta.1, =0.1.0, =0.0.92, =0.1.3, =4.2.1, =6.2.1, =13.6.1, =13.7.2 and more Source cves: CVE-2024-42461 Source advisory: OSV:GHSA-49Q7-C7J4-3P7M...
article-extract (>=0.1.2 <=0.1.3), ayugespidertools (>=3.4.0 <=3.9.7) +35 more potentially affected by unknown CVE via scrapy (>=1.3.3 <=2.11.1)
scrapy PYPI version =1.3.3, =0.1.2, =3.4.0, =2.8.3, =0.0.1.dev1, =1.2.1.20160901, =0.0.5, =0.3.0a0, =0.0.20, =0.9.3, =0.0.1, =0.0.1, =0.1.2, =1.0.0, =1.1.2.post0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-JM3V-QXMH-HXWV...
app.cash.lilbitcoinj:lilbitcoinj-core (>=0.0.2 <=0.0.3), app.cash.lninvoice:ln-invoice (>=0.0.1 <=0.0.6) +1309 more potentially affected by CVE-2024-30171 via org.bouncycastle:bcprov-jdk15to18 (>=1.63 <=1.77)
org.bouncycastle:bcprov-jdk15to18 MAVEN version =1.63, =0.0.2, =0.0.1, =0.2.9, =0.1.0, =0.2.1, =0.2.0, =1.0.0, =1.0.1, =0.2.0, =0.2.0, =1.0.0.RELEASE, =1.0.0, =1.0.0.RELEASE, =2.7.0 and more Source cves: CVE-2024-30171 Source advisory: OSV:GHSA-V435-XC8X-WVR9...
com.github.mcollovati:quarkus-hilla-commons-deployment (>=2.4.1 <=2.5.0-alpha2), com.github.mcollovati:quarkus-hilla-deployment (>=2.0.0 <=2.5.0-alpha2) +51 more potentially affected by CVE-2023-5675 via io.quarkus:quarkus-resteasy-reactive-common-deployment (>=3.3.0 <=3.6.8)
io.quarkus:quarkus-resteasy-reactive-common-deployment MAVEN version =3.3.0, =2.4.1, =2.0.0, =2.4.1, =0.32.0, =0.32.0, =0.0.0, =0.5.0, =0.2.0, =0.6.3, =0.1.0, =0.1.0, =0.1.0, =0.7.1 and more Source cves: CVE-2023-5675 So...
@jup-ag/dca-v2-sdk (>=0.0.0-beta-1 <=0.0.0-beta-9), @jup-ag/smart-wallet (>=0.0.0-beta-1 <=0.0.0-beta-56) +1 more potentially affected by CVE-2024-30253 via @solana/web3.js (=1.75.0)
@solana/web3.js NPM version =1.75.0 is affected by a known vulnerability. The following packages have a transitive dependency on @solana/web3.js and may be impacted: - @jup-ag/dca-v2-sdk =0.0.0-beta-1, =0.0.0-beta-1, =0.0.31, =1.0.3 Source cves: CVE-2024-30253 Source advisory:...
@arb-protocol/core (>=2.0.0-alpha.1 <=2.0.0-alpha.5), @arb-protocol/jupiter-adapter (>=2.0.0-alpha.5 <=2.0.0-alpha.6) +80 more potentially affected by CVE-2024-30253 via @solana/web3.js (=1.31.0)
@solana/web3.js NPM version =1.31.0 is affected by a known vulnerability. The following packages have a transitive dependency on @solana/web3.js and may be impacted: - @arb-protocol/core =2.0.0-alpha.1, =2.0.0-alpha.5, =2.0.0-alpha.1, =2.20.0, =1.0.1, =0.0.1, =0.0.1, =1.0.0, =0.2.0, =0.2.0, =0.0....
@angular-devkit/build-angular (>=17.3.0 <=17.3.3), @bebasebuild/basebuild (>=2.0.0-beta.0 <=2.0.0-beta.2) +57 more potentially affected by CVE-2024-31207 via vite (>=5.1.0 <=5.1.6)
vite NPM version =5.1.0, =17.3.0, =2.0.0-beta.0, =1.0.8, =17.3.0, =17.3.0, =0.0.0-6ba0891f, =0.0.0-6ba0891f, =0.0.0-6ba0891f, =6.0.12, =6.0.13, =6.0.13, =6.0.13, =6.0.13, =6.0.25 and more Source cves: CVE-2024-31207 Source advisory: OSV:GHSA-8JHW-289H-JH2G...
org.apache.pulsar:pulsar-broker-auth-athenz (=3.2.0), org.apache.pulsar:pulsar-broker-auth-sasl (=3.2.0) +2 more potentially affected by CVE-2024-28098 via org.apache.pulsar:pulsar-broker (=3.2.0)
org.apache.pulsar:pulsar-broker MAVEN version =3.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.pulsar:pulsar-broker and may be impacted: - org.apache.pulsar:pulsar-broker-auth-athenz =3.2.0 - org.apache.pulsar:pulsar-broker-auth-sasl...
cloud.piranha.extension:piranha-extension-hazelcast (>=22.12.0 <=23.4.0), cloud.piranha:debug (>=22.12.0 <=23.1.0) +210 more potentially affected by CVE-2023-45860 via com.hazelcast:hazelcast (>=5.2.0 <=5.2.4)
com.hazelcast:hazelcast MAVEN version =5.2.0, =22.12.0, =22.12.0, =23.1.0 - cn.vertxup:aeon-ambient =0.9.0 - cn.vertxup:aeon-aurora =0.9.0 - cn.vertxup:aeon-code =0.9.0 - cn.vertxup:aeon-cosmos =0.9.0 - cn.vertxup:aeon-ecology =0.9.0 - cn.vertxup:aeon-edge =0.9.0 - cn.vertxup:aeon-eternal =0.9.0 ...
01os (>=0.0.1 <=0.0.14), 0b1-protocol (>=0.1.0 <=0.1.3) +43060 more potentially affected by CVE-2024-23829 via aiohttp (>=0.13.1 <=3.9.1)
aiohttp PYPI version =0.13.1, =0.0.1, =0.1.0, =0.1.0, =0.2.0, =0.1.0, =1.0.0, =0.1.0, =0.1.0, =1.0.0, =0.1.0, =0.1.1, =0.1.2, =0.1.3 - 1942pyc =7.0.1 and more Source cves: CVE-2024-23829 Source advisory: OSV:PYSEC-2024-26...
@angular-devkit/build-angular (>=17.0.0-next.7 <=17.0.0-next.9), @attq/blackboox (>=0.4.0 <=0.4.2) +31 more potentially affected by CVE-2023-49293 via vite (>=4.4.1 <=4.4.11)
vite NPM version =4.4.1, =17.0.0-next.7, =0.4.0, =1.0.0-rc.1, =1.0.0, =1.9.0, =17.0.0-next.8, =17.0.0-next.8, =0.0.9, =0.0.9, =0.0.9, =0.0.18 and more Source cves: CVE-2023-49293 Source advisory: OSV:GHSA-92R3-M2MG-PJ97...
ai.timefold.solver:timefold-solver-examples (>=1.1.0 <=1.4.0), ai.timefold.solver:timefold-solver-spring-boot-starter (=1.4.0) +5876 more potentially affected by CVE-2023-6378 via ch.qos.logback:logback-classic (>=1.4.0 <=1.4.11)
ch.qos.logback:logback-classic MAVEN version =1.4.0, =1.1.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =23.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =23.9.1 and more Source cves: CVE-2023-6378 Source advisory: OSV:GHSA-VMQ6-5M68-F53M...
ai.timefold.solver:timefold-solver-examples (>=1.1.0 <=1.4.0), ai.timefold.solver:timefold-solver-spring-boot-starter (=1.4.0) +5841 more potentially affected by CVE-2023-6378 via ch.qos.logback:logback-core (>=1.4.0 <=1.4.11)
ch.qos.logback:logback-core MAVEN version =1.4.0, =1.1.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =23.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =23.9.1 and more Source cves: CVE-2023-6378 Source advisory: OSV:GHSA-VMQ6-5M68-F53M...
org.apache.atlas:storm-bridge (>=2.4.0 <=2.5.0), org.apache.atlas:storm-bridge-shim (>=2.4.0 <=2.5.0) potentially affected by CVE-2023-43123 via org.apache.storm:storm-core (=2.4.0)
org.apache.storm:storm-core MAVEN version =2.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.storm:storm-core and may be impacted: - org.apache.atlas:storm-bridge =2.4.0, =2.4.0, =2.5.0 Source cves: CVE-2023-43123 Source advisory:...
borgapi (>=0.1.3.dev1 <=0.6.1), borgini (=1.0.0) +2 more potentially affected by CVE-2023-36811 via borgbackup (>=1.1.13 <=1.2.4)
borgbackup PYPI version =1.1.13, =0.1.3.dev1, =0.12.0, =4.9.0, =4.10.1 Source cves: CVE-2023-36811 Source advisory: OSV:GHSA-8FJR-HGHR-4M99...
org.apache.nifi.minifi:minifi-assembly (>=1.22.0 <=1.23.0), org.apache.nifi:nifi-dbcp-service (>=1.21.0 <=1.23.0) +4 more potentially affected by CVE-2023-40037 via org.apache.nifi:nifi-dbcp-base (>=1.21.0 <=1.23.0)
org.apache.nifi:nifi-dbcp-base MAVEN version =1.21.0, =1.22.0, =1.21.0, =1.21.0, =1.21.0, =1.21.0, =1.21.0, =1.23.0 Source cves: CVE-2023-40037 Source advisory: OSV:GHSA-23QF-3JF9-H3Q9...
agent-actors (=0.1.0), agent-reader (>=0.2.1 <=0.2.2) +162 more potentially affected by CVE-2023-36188 via langchain (>=0.0.100 <=0.0.235)
langchain PYPI version =0.0.100, =0.2.1, =0.1.0, =0.1.5, =0.0.1, =0.0.1, =0.0.1, =0.0.5, =0.0.14, =0.1.9, =0.0.33, =0.1.0a0, =0.2.0, =0.1.3, =0.1.5 and more Source cves: CVE-2023-36188 Source advisory: OSV:GHSA-57FC-8Q82-GFP3...
ape-safe (=0.6.0), ape-vyper (>=0.7.1 <=0.8.3) +19 more potentially affected by CVE-2023-30629 via vyper (>=0.3.1 <=0.3.7)
vyper PYPI version =0.3.1, =0.7.1, =0.5.0, =0.5.0, =0.2.0, =0.1.0, =0.7.2, =0.1.10.0, =1.0.1, =0.1.0, =1.17.2, =0.0.0, =0.6.0, =2.0.0a1, =2.2.4 and more Source cves: CVE-2023-30629 Source advisory: OSV:GHSA-W9G2-3W7P-72G9...
be.zvz:KotlinInside (>=1.14.0 <=1.14.6), com.google.protobuf:protobuf-kotlin-lite (>=3.20.0 <=3.20.2) +8 more potentially affected by CVE-2022-3509 via com.google.protobuf:protobuf-javalite (>=3.20.0 <=3.20.2)
com.google.protobuf:protobuf-javalite MAVEN version =3.20.0, =1.14.0, =3.20.0, =2.12.0, =2.12.0, =2.3.0, =0.2.4, =0.2.6 - io.github.dimensiondev:maskwalletcore =0.5.0 Source cves: CVE-2022-3509 Source advisory: OSV:GHSA-G5WW-5JH7-63CX...
clip-jax (=0.0.5), sdeper (>=1.1.0 <=1.6.1) potentially affected by unknown CVE via tensorflow-cpu (>=2.9.0 <=2.9.1)
tensorflow-cpu PYPI version =2.9.0, =1.1.0, =1.6.1 Source cves: unknown CVE Source advisory: OSV:GHSA-CQVQ-FVHR-V6HC...
@armiasystems/react-native-armia-chat-sdk (>=1.0.0 <=1.0.9), @ats-components/circular-manager (>=1.0.4 <=1.0.11) +409 more potentially affected by CVE-2022-24373 via react-native-reanimated (>=1.0.0-alpha.3 <=2.0.1)
react-native-reanimated NPM version =1.0.0-alpha.3, =1.0.0, =1.0.4, =1.0.3, =0.1.0, =5.2.0, =0.0.1-alpha.22, =3.1.5, =0.1.1, =1.0.0, =2.31.0, =1.0.2, =0.1.9, =0.6.33 and more Source cves: CVE-2022-24373 Source advisory: OSV:GHSA-2J79-8PQC-R7X6...
125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4899 more potentially affected by CVE-2022-35979 via tensorflow (>=1.0.1 <=2.7.1)
tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.5.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-35979 Source advisory: OSV:GHSA-V7VW-577F-VP8X...
org.apache.portals.pluto:pluto-ant-tasks (=3.0.0), org.apache.portals.pluto:pluto-common (=3.0.0) +6 more potentially affected by CVE-2018-1306 via org.apache.portals.pluto:pluto-container (=3.0.0)
org.apache.portals.pluto:pluto-container MAVEN version =3.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.portals.pluto:pluto-container and may be impacted: - org.apache.portals.pluto:pluto-ant-tasks =3.0.0 -...
@acanto/components (>=0.0.2 <=0.0.73), @acanto/components-header-subnav (>=0.0.2 <=0.0.37) +51 more potentially affected by CVE-2021-23702 via object-extend (=0.5.0)
object-extend NPM version =0.5.0 is affected by a known vulnerability. The following packages have a transitive dependency on object-extend and may be impacted: - @acanto/components =0.0.2, =0.0.2, =0.0.2, =0.0.3, =0.0.2, =0.0.2, =0.0.17, =0.0.2, =0.0.2, =0.0.65, =0.0.2, =0.0.2, =0.0.2, =0.0.4,...
@foxnfork/auth-node (>=0.0.8 <=0.0.50), @foxnfork/node-utils (>=0.0.1 <=0.0.9) +11 more potentially affected by CVE-2021-26543 via git-parse (>=1.0.3 <=1.0.4)
git-parse NPM version =1.0.3, =0.0.8, =0.0.1, =0.0.1, =2.11.0-beta, =1.4.3, =2.6.0, =2.18.1, =0.2.11, =1.2.7, =1.0.0, =2.33.10, =0.2.1, =2.6.2, =2.6.3 Source cves: CVE-2021-26543 Source advisory: OSV:GHSA-M744-2JJ8-VPFV...
ai.dstack:server-base-local (>=0.0.12 <=0.1.15), ai.hyacinth.framework:core-service-jpa-support (=0.5.24) +1905 more potentially affected by CVE-2020-25638 via org.hibernate:hibernate-core (>=5.4.0.Final <=5.4.23.Final)
org.hibernate:hibernate-core MAVEN version =5.4.0.Final, =0.0.12, =0.0.4, =3.7.0, =5.0.0, =5.0.0, =3.7.0, =5.0.0, =3.7.0, =5.1.0, =3.7.0, =5.2.1 and more Source cves: CVE-2020-25638 Source advisory: OSV:GHSA-J8JW-G6FQ-MP7H...
@aaa-backend-stack/build-tools (>=1.16.0 <=2.4.4), @aaa-backend-stack/devtools (>=1.16.0 <=2.4.4) +141 more potentially affected by CVE-2019-10795 via undefsafe (>=0.0.2 <=2.0.1)
undefsafe NPM version =0.0.2, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.1, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =2.4.4 and more Source cves: CVE-2019-10795 Source advisory: OSV:GHSA-332Q-7FF2-57H2...
a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +102 more potentially affected by CVE-2022-23580 via tensorflow-cpu (>=1.15.0 <=2.4.4)
tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-23580 Source advisory: OSV:GHSA-627Q-G293-49Q7...
RPD:bmc-rpd (=1.1), ae.teletronics.nlp:entityextraction (>=1.3 <=1.4) +40407 more potentially affected by CVE-2022-23305 via log4j:log4j (>=1.1.3 <=1.2.17)
log4j:log4j MAVEN version =1.1.3, =1.3, =0.0.5, =1.0.0, =0.25-rc1, =0.25-rc1, =0.25, =0.25, =0.25, =0.25, =1.0.1, =1.0.6, =1.0.6, =1.1, =1.2.10 and more Source cves: CVE-2022-23305 Source advisory: OSV:GHSA-65FG-84F6-3JQ3...
arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +169 more potentially affected by CVE-2021-41213 via tensorflow-gpu (>=1.10.1 <=2.4.2)
tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - brainhance =0.0.1 - cctv-analysis =0.0.2 - chatbot-nlu =1.0.0 and more Source cves: CVE-2021-41213 Source advisory: OSV:PYSEC-2021-820...
bent (>=0.0.9 <=0.0.80), tensorflow-recommenders-addons-gpu (>=0.3.0 <=0.4.1) potentially affected by CVE-2021-41223 via tensorflow-gpu (=2.5.1)
tensorflow-gpu PYPI version =2.5.1 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - bent =0.0.9, =0.3.0, =0.4.1 Source cves: CVE-2021-41223 Source advisory: OSV:PYSEC-2021-830...
CLI-game-of-life (=0.1.0), RustyBox (=0.1.0) +1539 more potentially affected by CVE-2020-35922 via mio (=0.7.14)
mio CARGO version =0.7.14 is affected by a known vulnerability. The following packages have a transitive dependency on mio and may be impacted: - CLI-game-of-life =0.1.0 - RustyBox =0.1.0 - RustyVault =0.1.0, =0.1.0, =2.0.0-beta.1, =0.1.0, =0.9.0, =0.9.0, =0.1.0, =0.1.0, =0.1.0, =0.4.0 and more...
complaintclassify (=0.0.9) potentially affected by CVE-2021-37689 via tensorflow-cpu (=2.4.0)
tensorflow-cpu PYPI version =2.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - complaintclassify =0.0.9 Source cves: CVE-2021-37689 Source advisory: OSV:PYSEC-2021-602...
d3m-simon (=1.2.5), easyquake (>=1.3.0 <=1.4.0) potentially affected by CVE-2021-29601 via tensorflow-gpu (=2.2.0)
tensorflow-gpu PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - d3m-simon =1.2.5 - easyquake =1.3.0, =1.4.0 Source cves: CVE-2021-29601 Source advisory: OSV:GHSA-9C84-4HX6-XMM4...
arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +161 more potentially affected by CVE-2021-29596 via tensorflow-gpu (>=1.10.1 <=2.1.1)
tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - cctv-analysis =0.0.2 - chatbot-nlu =1.0.0 - classitransformers =0.0.1 and more Source cves: CVE-2021-29596 Source advisory: OSV:GHSA-4VRF-FF7V-HPGR...
pycnet-audio (>=0.5.1 <=0.5.8) potentially affected by CVE-2021-29547 via tensorflow-cpu (=2.2.0)
tensorflow-cpu PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - pycnet-audio =0.5.1, =0.5.8 Source cves: CVE-2021-29547 Source advisory: OSV:GHSA-4FG4-P75J-W5XJ...
aiproteomics (=0.2.1), alpharing (>=1.0.0 <=2.0.0) +25 more potentially affected by CVE-2021-29528 via tensorflow-cpu (>=1.15.0 <=2.1.0)
tensorflow-cpu PYPI version =1.15.0, =1.0.0, =0.0.1, =1.0.0.4, =0.1.0, =0.2.3, =0.0.5, =0.1.2, =1.0.0, =1.8.2, =1.6.1, =1.8.3 - netfl =1.5.0 and more Source cves: CVE-2021-29528 Source advisory: OSV:GHSA-6F84-42VF-PPWP...
brainhance (=0.0.1), crystal4d (>=0.0.4 <=0.1.2) +3 more potentially affected by CVE-2021-29599 via tensorflow-gpu (>=2.4.0 <=2.4.1)
tensorflow-gpu PYPI version =2.4.0, =0.0.4, =1.1.1, =1.0.0, =1.0.1 - tf-yarn-gpu =0.6.3 Source cves: CVE-2021-29599 Source advisory: OSV:PYSEC-2021-725...
complaintclassify (=0.0.9) potentially affected by CVE-2021-29543 via tensorflow-cpu (=2.4.0)
tensorflow-cpu PYPI version =2.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - complaintclassify =0.0.9 Source cves: CVE-2021-29543 Source advisory: OSV:PYSEC-2021-471...
complaintclassify (=0.0.9) potentially affected by CVE-2021-29609 via tensorflow-cpu (=2.4.0)
tensorflow-cpu PYPI version =2.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - complaintclassify =0.0.9 Source cves: CVE-2021-29609 Source advisory: OSV:PYSEC-2021-537...
aiproteomics (=0.2.1), alpharing (>=1.0.0 <=2.0.0) +25 more potentially affected by CVE-2021-29599 via tensorflow-cpu (>=1.15.0 <=2.1.0)
tensorflow-cpu PYPI version =1.15.0, =1.0.0, =0.0.1, =1.0.0.4, =0.1.0, =0.2.3, =0.0.5, =0.1.2, =1.0.0, =1.8.2, =1.6.1, =1.8.3 - netfl =1.5.0 and more Source cves: CVE-2021-29599 Source advisory: OSV:PYSEC-2021-527...
arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +161 more potentially affected by CVE-2021-29611 via tensorflow-gpu (>=1.10.1 <=2.1.1)
tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - cctv-analysis =0.0.2 - chatbot-nlu =1.0.0 - classitransformers =0.0.1 and more Source cves: CVE-2021-29611 Source advisory: OSV:PYSEC-2021-737...
c4v-py (>=0.1.0.dev1 <=0.1.0.dev202107081840) potentially affected by CVE-2021-29585 via tensorflow-cpu (=2.3.1)
tensorflow-cpu PYPI version =2.3.1 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - c4v-py =0.1.0.dev1, =0.1.0.dev202107081840 Source cves: CVE-2021-29585 Source advisory: OSV:PYSEC-2021-513...
accuinsight (>=1.0.47 <=1.0.61), alphad3m (>=0.10.0 <=0.10.0.dev1) +88 more potentially affected by CVE-2021-29593 via tensorflow (>=2.2.0 <=2.2.2)
tensorflow PYPI version =2.2.0, =1.0.47, =0.10.0, =0.5.0, =0.2.0, =0.0.6, =1.2.0, =1.0.0, =0.0.15, =0.0.16 and more Source cves: CVE-2021-29593 Source advisory: OSV:PYSEC-2021-230...
bigio (>=0.1.3 <=0.1.13), deadpool (=0.0.1) +45 more potentially affected by CVE-2021-21368 via msgpack5 (>=1.3.5 <=3.5.1)
msgpack5 NPM version =1.3.5, =0.1.3, =0.3.0, =1.0.1, =0.2.0, =0.1.6, =0.1.0, =0.0.3, =0.0.3, =0.0.3, =0.6.2, =0.7.6 and more Source cves: CVE-2021-21368 Source advisory: OSV:GHSA-GMJW-49P4-PCFM...
app.cash.backfila:client-misk (>=0.1.0 <=2026.02.24.162528-f89a8e7), app.cash.backfila:client-misk-dynamodb (>=0.1.3-20210127.1838-76ab4fc <=0.1.4-20210806.0204-5341f38) +510 more potentially affected by CVE-2020-8570 via io.kubernetes:client-java (>=0.2 <=9.0.1)
io.kubernetes:client-java MAVEN version =0.2, =0.1.0, =0.1.3-20210127.1838-76ab4fc, =0.1.3-20210127.1838-76ab4fc, =0.1.3-20210805.0116-93702c4, =0.1.3-20210805.0116-93702c4, =0.1.0, =2023.06.07.114626-93b9d6f, =0.1.0, =0.1.4-20220614.0152-5ae0eef, =0.1.4, =0.1.14 - cc.zzzyu.nacos:nacos-console...
@corejam/base (>=0.0.1 <=0.0.2), @corejam/cli (>=0.0.1 <=0.0.5) +27 more potentially affected by CVE-2021-23326 via @graphql-tools/git-loader (>=6.0.0-alpha.1 <=6.2.6-alpha-9e1fc254.0)
@graphql-tools/git-loader NPM version =6.0.0-alpha.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =6.0.15, =4.0.1-alpha-0a0f697.0, =4.0.1-alpha-0a0f697.0, =1.13.6-alpha-c74c7b7d.14, =0.0.0-canary.02a53c5, =0.0.1, =1.0.5, =0.0.24, =0.1.0, =1.29.0, =2.0.0-alpha.36 and more Source cves: CVE-2021-23326 Source...