python
250 tracked vulnerabilities.
CVE-2018-1000117
MEDIUM
CPython 3.2-3.6.4 - Buffer Overflow in os.symlink() on Windows
Mar 07, 2018
CVSS 6.7
EPSS 0.00
CVE-2018-1000030
LOW
Python < 2.7.14 - Heap-Buffer-Overflow and Use-After-Free via Race Condition
Feb 08, 2018
CVSS 3.6
EPSS 0.01
CVE-2017-20052
MEDIUM
Python 2.7.13 - Uncontrolled Search Path
Jun 16, 2022
CVSS 5.0
EPSS 0.00
CVE-2017-18207
MEDIUM
Python < 3.6.4 - Denial of Service via Crafted WAV File Channel Value
Mar 01, 2018
CVSS 6.5
EPSS 0.00
CVE-2017-17522
HIGH
Python < 3.6.3 - Argument Injection via BROWSER Environment Variable
Dec 14, 2017
CVSS 8.8
EPSS 0.01
CVE-2017-1000158
CRITICAL
CPython < 2.7.15 - Integer Overflow to Heap-Based Buffer Overflow in PyString_DecodeEscape
Nov 17, 2017
CVSS 9.8
EPSS 0.04
CVE-2017-9233
HIGH
libexpat < 2.2.0 - XML External Entity Injection via Malformed External Entity Definition
Jul 25, 2017
CVSS 7.5
EPSS 0.00
CVE-2017-2810
HIGH
Tablib 0.11.4 - Remote Code Execution via YAML Databook Loading
Jun 14, 2017
CVSS 7.5
EPSS 0.01
CVE-2017-5992
HIGH
openpyxl < 2.4.2 - XML External Entity Injection via Crafted .xlsx Document
Feb 15, 2017
CVSS 8.2
EPSS 0.01
CVE-2016-1000110
MEDIUM
Python < 2.7.13 - Open Redirect via HTTP_PROXY Variable
Nov 27, 2019
CVSS 6.1
EPSS 0.10
CVE-2016-9063
CRITICAL
Firefox < 50 - Integer Overflow in Expat XML Parser
Jun 11, 2018
CVSS 9.8
EPSS 0.03
CVE-2016-3076
MEDIUM
Pillow 2.5.0-3.1.1 - Heap-Based Buffer Overflow in j2k_encode_entry
Apr 24, 2017
CVSS 5.5
EPSS 0.00
CVE-2016-9015
LOW
Python urllib3 <1.19 - Info Disclosure
Jan 11, 2017
CVSS 3.7
EPSS 0.00
CVE-2016-6581
HIGH
HPACK 1.0.0-2.2.0 - Denial of Service via HPACK Bomb Compression Attack
Jan 10, 2017
CVSS 7.5
EPSS 0.00
CVE-2016-6580
HIGH
Python Priority Library <1.2.0 - DoS
Jan 10, 2017
CVSS 7.5
EPSS 0.00
CVE-2016-9190
HIGH
Pillow < 3.3.2 - Remote Code Execution via Crafted Image File
Nov 04, 2016
CVSS 7.8
EPSS 0.01
CVE-2016-9189
MEDIUM
Pillow < 3.3.2 - Integer Overflow in Image.core.map_buffer
Nov 04, 2016
CVSS 5.5
EPSS 0.00
CVE-2016-1000032
HIGH
TGCaptcha2 <0.3.0 - Info Disclosure
Oct 25, 2016
CVSS 7.5
EPSS 0.00
CVE-2016-5699
MEDIUM
CPython < 2.7.9 - HTTP Header Injection via CRLF Sequences in HTTPConnection.putheader
Sep 02, 2016
CVSS 6.1
EPSS 0.42
CVE-2016-5636
CRITICAL
CPython <2.7.12, <3.4.5, <3.5.2 - Buffer Overflow
Sep 02, 2016
CVSS 9.8
EPSS 0.45
CVE-2016-0772
MEDIUM
CPython <3.4.5-2.7.12 - Info Disclosure
Sep 02, 2016
CVSS 6.5
EPSS 0.08
CVE-2016-2183
HIGH
Redhat Jboss Enterprise Application Platform - Information Disclosure
Sep 01, 2016
CVSS 7.5
EPSS 0.38
CVE-2016-4472
HIGH
libexpat < 2.1.1 - Denial of Service via Crafted XML Data
Jun 30, 2016
CVSS 8.1
EPSS 0.02
CVE-2016-3189
MEDIUM
bzip2 1.0.6 - Use-After-Free via Crafted bzip2 File
Jun 30, 2016
CVSS 6.5
EPSS 0.24
CVE-2016-0718
CRITICAL
Expat - Buffer Overflow
May 26, 2016
CVSS 9.8
EPSS 0.03
Products
python 132
pillow 60
urllib3 19
requests 6
keyring 3
setuptools 3
black 2
pyxdg 2
typed_ast 2
Protobuf 1
beaker 1
cpython 1
hpack 1
hyper 1
jw.util 1
novajoin 1
openpyxl 1
py-bcrypt 1
pybluemonday 1
pymanager 1
pypi 1
pypiserver 1
python-gnupg 1
python_priority_library 1
pyxml 1
rply 1
rsa 1
tablib 1
tgcaptcha2 1
tkvideoplayer 1
Quick Filters