Known Vulnerabilities for products from Python
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Python".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-45227 json | Not Provided | 2026-05-12 | 2026-05-12 | |
| CVE-2026-44432 json | Not Provided | 2026-05-13 | 2026-05-13 | |
| CVE-2026-44431 json | Not Provided | 2026-05-13 | 2026-05-13 | |
| CVE-2026-44336 json | Not Provided | 2026-05-08 | 2026-05-11 | |
| CVE-2026-44307 json | Not Provided | 2026-05-12 | 2026-05-13 | |
| CVE-2026-44304 json | Not Provided | 2026-05-12 | 2026-05-12 | |
| CVE-2026-44244 json | Not Provided | 2026-05-07 | 2026-05-09 | |
| CVE-2026-44243 json | Not Provided | 2026-05-07 | 2026-05-07 | |
| CVE-2026-44226 json | Not Provided | 2026-05-11 | 2026-05-11 | |
| CVE-2026-43948 json | Not Provided | 2026-05-12 | 2026-05-13 | |
| CVE-2026-42310 json | Pillow is a Python imaging library. From version 4.2.0 to before version 12.2.0, an attacker can supply a malicious PDF that ... | Not Provided | 2026-05-09 | 2026-05-12 |
| CVE-2026-42309 json | Pillow is a Python imaging library. From version 11.2.1 to before version 12.2.0, passing nested lists as coordinates to APIs... | Not Provided | 2026-05-09 | 2026-05-12 |
| CVE-2026-42308 json | Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, ... | Not Provided | 2026-05-09 | 2026-05-12 |
| CVE-2026-40192 json | Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed data read when... | Not Provided | 2026-04-15 | 2026-04-22 |
| CVE-2026-25990 json | Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when loading a spec... | Not Provided | 2026-02-11 | 2026-04-30 |
| CVE-2026-25645 json | Requests is a HTTP library. Prior to version 2.33.0, the `requests.utils.extract_zipped_paths()` utility function uses a pred... | Not Provided | 2026-03-25 | 2026-03-30 |
| CVE-2026-5271 json | pymanager included the current working directory in sys.path meaning modules could be shadowed by modules in the current work... | Not Provided | 2026-04-01 | 2026-04-07 |
| CVE-2026-4519 json | The webbrowser.open() API would accept leading dashes in the URL which could be handled as command line options for certain ... | Not Provided | 2026-03-20 | 2026-04-16 |
| CVE-2026-3087 json | If `shutil.unpack_archive()` is given a ZIP archive with an absolute Windows path containing a drive (`C:\\...`) then the arc... | Not Provided | 2026-04-27 | 2026-05-13 |
| CVE-2023-50447 json | 8.1 - HIGH | 2024-01-19 | 2024-03-27 |
Known software with vulnerabilities from Python
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Python | Decorator | 3.3.1 |
| Application | Python | Enum34 | 0.9 |
| Application | Python | Jw.util | 1.0 |
| Application | Python | Keyring | 0.10 |
| Application | Python | Networkx | 0.23 |
| Application | Python | Novajoin | - |
| Application | Python | Openpyxl | 1.1.0 |
| Application | Python | Pillow | 1.7.8 |
| Application | Python | Py-bcrypt | 0.1 |
| Application | Python | Pycryptodome | 3.0 |
| Application | Python | Pykerberos | - |
| Application | Python | Pypiserver | 0.1.0 |
| Application | Python | Python | - |
| Application | Python | Python-gnupg | 0.2.3 |
| Application | Python | Pyxdg | 0.25 |
| Application | Python | Requests | 0.0.1 |
| Application | Python | Rply | 0.7.0 |
| Application | Python | Rsa | 1.1 |
| Application | Python | Setuptools | 0.6.40 |
| Application | Python | Tablib | 0.0.1 |