Python

235 tracked vulnerabilities.

CVE-2026-25990 HIGH
Python Pillow < 12.1.1 - Out-of-Bounds Write
Feb 11, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-12781 MEDIUM
base64 module - Info Disclosure
Jan 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-21441 HIGH
urllib3 - Info Disclosure
Jan 07, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-66471 HIGH
urllib3 <2.6.0 - Info Disclosure
Dec 05, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-66418 HIGH
urllib3 <2.6.0 - DoS
Dec 05, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-12084 MEDIUM
xml.dom.minidom - Info Disclosure
Dec 03, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-13837 MEDIUM
Python < 3.13.10 - Denial of Service
Dec 01, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-13836 HIGH
Python < 3.13.11 - Denial of Service
Dec 01, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-6075 MEDIUM
os.path.expandvars - Info Disclosure
Oct 31, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-48379 HIGH
Pillow <11.3.0 - Buffer Overflow
Jul 01, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-50182 MEDIUM
urllib3 <2.5.0 - Info Disclosure
Jun 19, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-50181 MEDIUM
urllib3 <2.5.0 - SSRF
Jun 19, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-47273 HIGH
Python Setuptools < 78.1.1 - Path Traversal
May 17, 2025
CVSS 8.8
EPSS 0.00
CVE-2024-9287 HIGH
Python < 3.9.21 - Command Injection
Oct 22, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-6232 HIGH
CPython - ReDoS
Sep 03, 2024
CVSS 7.5
EPSS 0.03
CVE-2024-7592 HIGH
CPython - Info Disclosure
Aug 19, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-37891 MEDIUM
urllib3 - Info Disclosure
Jun 17, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-28219 MEDIUM
Python Pillow < 10.3.0 - Buffer Overflow
Apr 03, 2024
CVSS 6.7
EPSS 0.00
CVE-2023-50447 HIGH
Python Pillow < 10.1.0 - Code Injection
Jan 19, 2024
CVSS 8.1
EPSS 0.01
CVE-2023-6507 MEDIUM
CPython 3.12.0 - Use After Free
Dec 08, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-44271 HIGH
Python Pillow < 10.0.0 - Resource Allocation Without Limits
Nov 03, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-45803 MEDIUM
Python Urllib3 < 1.26.18 - Information Disclosure
Oct 17, 2023
CVSS 4.2
EPSS 0.00
CVE-2018-25091 MEDIUM
urllib3 <1.24.2 - Info Disclosure
Oct 15, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-43804 MEDIUM
urllib3 <1.26.17, <2.0.5 - Info Disclosure
Oct 04, 2023
CVSS 5.9
EPSS 0.01
CVE-2023-40217 MEDIUM
Python <3.8.18-3.11.5 - Info Disclosure
Aug 25, 2023
CVSS 5.3
EPSS 0.01
Products
python 130 pillow 55 urllib3 17 requests 5 setuptools 3 keyring 3 pyxdg 2 typed_ast 2 pypi 1 pypiserver 1 python-gnupg 1 python_priority_library 1 pyxml 1 rply 1 rsa 1 tablib 1 tgcaptcha2 1 tkvideoplayer 1 beaker 1 virtualenv 1 hpack 1 hyper 1 jw.util 1 novajoin 1 openpyxl 1 py-bcrypt 1 pybluemonday 1
Quick Filters
Critical CVEs With Exploits In CISA KEV