Known Vulnerabilities for products from Python

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Python".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2026-48735 json Not Provided 2026-05-28 2026-05-28
CVE-2026-48526 json Not Provided 2026-05-28 2026-05-29
CVE-2026-48525 json Not Provided 2026-05-28 2026-05-28
CVE-2026-48524 json Not Provided 2026-05-28 2026-05-28
CVE-2026-48523 json Not Provided 2026-05-28 2026-05-28
CVE-2026-48522 json Not Provided 2026-05-28 2026-05-28
CVE-2026-48207 json Not Provided 2026-05-21 2026-05-21
CVE-2026-48156 json Not Provided 2026-05-28 2026-05-28
CVE-2026-48155 json Not Provided 2026-05-28 2026-05-28
CVE-2026-46561 json Not Provided 2026-05-28 2026-05-28
CVE-2026-44432 json urllib3 is an HTTP client library for Python. From 2.6.0 to before 2.7.0, urllib3 could decompress the whole response instead... Not Provided 2026-05-13 2026-05-14
CVE-2026-44431 json urllib3 is an HTTP client library for Python. From 1.23 to before 2.7.0, cross-origin redirects followed from the low-level A... Not Provided 2026-05-13 2026-05-14
CVE-2026-42311 json Pillow is a Python imaging library. From version 10.3.0 to before version 12.2.0, processing a malicious PSD file could lead ... Not Provided 2026-05-09 2026-05-14
CVE-2026-42310 json Pillow is a Python imaging library. From version 4.2.0 to before version 12.2.0, an attacker can supply a malicious PDF that ... Not Provided 2026-05-09 2026-05-12
CVE-2026-42309 json Pillow is a Python imaging library. From version 11.2.1 to before version 12.2.0, passing nested lists as coordinates to APIs... Not Provided 2026-05-09 2026-05-12
CVE-2026-42308 json Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, ... Not Provided 2026-05-09 2026-05-12
CVE-2026-40192 json Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed data read when... Not Provided 2026-04-15 2026-04-22
CVE-2026-25990 json Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when loading a spec... Not Provided 2026-02-11 2026-04-30
CVE-2026-25645 json Requests is a HTTP library. Prior to version 2.33.0, the `requests.utils.extract_zipped_paths()` utility function uses a pred... Not Provided 2026-03-25 2026-03-30
CVE-2026-7210 json `xml.parsers.expat` and `xml.etree.ElementTree` use insufficient entropy for Expat hash-flooding protection, which allows a c... Not Provided 2026-05-11 2026-06-01
Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from Python

Type Vendor Product Version
ApplicationPythonDecorator3.3.1
ApplicationPythonEnum340.9
ApplicationPythonJw.util1.0
ApplicationPythonKeyring0.10
ApplicationPythonNetworkx0.23
ApplicationPythonNovajoin-
ApplicationPythonOpenpyxl1.1.0
ApplicationPythonPillow1.7.8
ApplicationPythonPy-bcrypt0.1
ApplicationPythonPycryptodome3.0
ApplicationPythonPykerberos-
ApplicationPythonPypiserver0.1.0
ApplicationPythonPython-
ApplicationPythonPython-gnupg0.2.3
ApplicationPythonPyxdg0.25
ApplicationPythonRequests0.0.1
ApplicationPythonRply0.7.0
ApplicationPythonRsa1.1
ApplicationPythonSetuptools0.6.40
ApplicationPythonTablib0.0.1
Results limited to 20 most recent known configurations