pypi

4,998 tracked vulnerabilities.

CVE-2025-3163 MEDIUM
InternLM LMDeploy <= 0.7.1 - Code Injection in Open Function
Apr 03, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-3162 MEDIUM
InternLM LMDeploy < 0.7.1 - Deserialization in PT File Handler
Apr 03, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-2946 CRITICAL
pgAdmin <= 9.1 - Cross-Site Scripting via Query Result Rendering
Apr 03, 2025
CVSS 9.1
EPSS 0.00
CVE-2025-2945 CRITICAL
pgAdmin Query Tool authenticated RCE (CVE-2025-2945)
Apr 03, 2025
CVSS 9.9
EPSS 0.46
CVE-2025-27556 MEDIUM
Django 5.0-5.0.13 and 5.1-5.1.7 - Denial of Service via NFKC Normalization on Windows
Apr 02, 2025
CVSS 5.8
EPSS 0.01
CVE-2025-31116 MEDIUM
Mobile Security Framework < 4.3.2 - Server-Side Request Forgery via DNS Rebinding
Mar 31, 2025
CVSS 4.4
EPSS 0.00
CVE-2025-3048 MEDIUM
AWS SAM CLI <1.134.0 - Info Disclosure
Mar 31, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-3047 MEDIUM
SAM CLI <v1.133.0 - Privilege Escalation
Mar 31, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-3001 MEDIUM
PyTorch 2.6.0 - Memory Corruption in torch.lstm_cell
Mar 31, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-3000 MEDIUM
PyTorch 2.6.0 - Memory Corruption in torch.jit.script
Mar 31, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-2999 MEDIUM
PyTorch 2.6.0 - Memory Corruption in torch.nn.utils.rnn.unpack_sequence
Mar 31, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-2998 MEDIUM
PyTorch 2.6.0 - Memory Corruption in torch.nn.utils.rnn.pad_packed_sequence
Mar 31, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-2953 LOW
PyTorch 2.6.0+cu124 - Denial of Service in torch.mkldnn_max_pool2d
Mar 30, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-30358 HIGH
Mesop < 0.14.1 - Class Pollution leading to Denial of Service and Identity Confusion
Mar 27, 2025
CVSS 8.1
EPSS 0.01
CVE-2025-30355 HIGH
Synapse < 1.127.1 - Denial of Service via Malicious Federation Events
Mar 27, 2025
CVSS 7.1
EPSS 0.01
CVE-2025-30217 HIGH
Frappe <14.93.2, 15.55.0 - SQL Injection
Mar 26, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-30214 HIGH
Frappe <14.89.0-15.51.0 - Info Disclosure
Mar 25, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-30213 HIGH
Frappe < 14.91.0 - Remote Code Execution via Document Creation
Mar 25, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-30212 HIGH
Frappe Framework <14.89.0, <15.51.0 - SQL Injection
Mar 25, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-1474 MEDIUM
mlflow/mlflow <2.19.0 - Info Disclosure
Mar 20, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-1473 HIGH
MLflow 2.17.0-2.20.1 - Cross-Site Request Forgery in Signup Feature
Mar 20, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-0628 HIGH
BerriAI/litellm - Privilege Escalation
Mar 20, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-0508 MEDIUM
SageMaker Workflow - Info Disclosure
Mar 20, 2025
CVSS 5.9
EPSS 0.00
CVE-2025-0453 HIGH
mlflow 2.17.2 - Denial of Service via GraphQL Endpoint Resource Exhaustion
Mar 20, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-0330 HIGH
berriai/litellm <1.52.1 - Info Disclosure
Mar 20, 2025
CVSS 7.5
EPSS 0.01