python · threatengine.sh

CVE-2026-44432

>= 2.6.0 and < 2.7.0

urllib3 is an HTTP client library for Python. From 2.6.0 to before 2.7.0, urllib3 could decompress the whole response instead of t

7.5HIGH

CVE-2026-44431

>= 1.23 and < 2.7.0

urllib3 is an HTTP client library for Python. From 1.23 to before 2.7.0, cross-origin redirects followed from the low-level API vi

5.3MEDIUM

CVE-2026-42311

>= 10.3.0 and < 12.2.0

Pillow is a Python imaging library. From version 10.3.0 to before version 12.2.0, processing a malicious PSD file could lead to me

7.8HIGH

CVE-2026-42310

>= 4.2.0 and < 12.2.0

Pillow is a Python imaging library. From version 4.2.0 to before version 12.2.0, an attacker can supply a malicious PDF that cause

5.5MEDIUM

CVE-2026-42309

>= 11.2.1 and < 12.2.0

Pillow is a Python imaging library. From version 11.2.1 to before version 12.2.0, passing nested lists as coordinates to APIs that

5.5MEDIUM

CVE-2026-42308

< 12.2.0

Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, when

5.5MEDIUM

CVE-2026-3087

<= 3.14.4

If shutil.unpack_archive() is given a ZIP archive with an absolute Windows path containing a drive (C:\\...) then the archive

7.5HIGH

CVE-2026-40192

>= 10.3.0 and < 12.2.0

Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed data read when deco

7.5HIGH

CVE-2026-25645

< 2.33.0

Requests is a HTTP library. Prior to version 2.33.0, the requests.utils.extract_zipped_paths() utility function uses a predictab

4.4MEDIUM

CVE-2026-4519

< 3.13.13

The webbrowser.open() API would accept leading dashes in the URL which could be handled as command line options for certain web b

3.3LOW

CVE-2026-32274

< 26.3.1

Black is the uncompromising Python code formatter. Prior to 26.3.1, Black writes a cache file, the name of which is computed from

7.5HIGH

CVE-2026-31900

< 26.3.0

Black is the uncompromising Python code formatter. Black provides a GitHub action for formatting code. This action supports an opt

9.8CRITICAL

CVE-2026-25990

>= 10.3.0 and < 12.1.1

Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when loading a specially

7.5HIGH

CVE-2025-12781

< 3.13.10

When passing data to the b64decode(), standard_b64decode(), and urlsafe_b64decode() functions in the "base64" module the character

5.3MEDIUM

CVE-2026-21441

>= 1.22 and < 2.6.3

urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP respons

7.5HIGH

CVE-2025-66471

>= 1.0 and < 2.6.0

urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.0 and prior to 2.6.0, the Streaming API improperl

7.5HIGH

CVE-2025-66418

>= 1.24 and < 2.6.0

urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the

7.5HIGH

CVE-2025-12084

< 3.13.11

When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the

5.3MEDIUM

CVE-2025-13837

< 3.13.10

When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause

5.5MEDIUM

CVE-2025-13836

< 3.10.20

When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. T

7.5HIGH

CVE-2025-6075

< 3.9.0

If the value passed to os.path.expandvars() is user-controlled a performance degradation is possible when expanding environment

5.5MEDIUM

CVE-2025-49714

< 2025.8.1

Trust boundary violation in Visual Studio Code - Python extension allows an unauthorized attacker to execute code locally.

7.8HIGH

CVE-2025-48379

all versions

Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap buffer overflow when writing a sufficient

7.1HIGH

CVE-2025-50182

>= 2.2.0 and < 2.5.0

urllib3 is a user-friendly HTTP client library for Python. Starting in version 2.2.0 and prior to 2.5.0, urllib3 does not control

5.3MEDIUM

CVE-2025-50181

< 2.5.0

urllib3 is a user-friendly HTTP client library for Python. Prior to 2.5.0, it is possible to disable redirects for all requests by

5.3MEDIUM

CVE-2025-47273

< 78.1.1

setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path traversal vu

8.8HIGH

CVE-2024-49050

< 2024.18.2

Visual Studio Code Python Extension Remote Code Execution Vulnerability

8.8HIGH

CVE-2024-9287

< 3.9.21

A vulnerability has been found in the CPython venv module and CLI where path names provided when creating a virtual environment

7.8HIGH

CVE-2024-6232

< 3.8.20

There is a MEDIUM severity vulnerability affecting CPython. Regular expressions that allowed excessive backtracking during ta

7.5HIGH

CVE-2024-7592

< 3.8.20

There is a LOW severity vulnerability affecting CPython, specifically the 'http.cookies' standard library module. When parsing c

7.5HIGH

CVE-2024-37891

< 1.26.19

urllib3 is a user-friendly HTTP client library for Python. When using urllib3's proxy support with ProxyManager, the `Proxy-Auth

4.4MEDIUM

CVE-2024-28219

< 10.3.0

In _imagingcms.c in Pillow before 10.3.0, a buffer overflow exists because strcpy is used instead of strncpy.

6.7MEDIUM

CVE-2023-50447

<= 10.1.0

Pillow through 10.1.0 allows PIL.ImageMath.eval Arbitrary Code Execution via the environment parameter, a different vulnerability

8.1HIGH

CVE-2020-17163

< 2020.9.2

Visual Studio Code Python Extension Remote Code Execution Vulnerability

7.8HIGH

CVE-2023-6507

all versions

An issue was found in CPython 3.12.0 subprocess module on POSIX platforms. The issue was fixed in CPython 3.12.1 and does not af

6.1MEDIUM

CVE-2023-44271

< 10.0.0

An issue was discovered in Pillow before 10.0.0. It is a Denial of Service that uncontrollably allocates memory to process a given

7.5HIGH

CVE-2023-45803

< 1.26.18

urllib3 is a user-friendly HTTP client library for Python. urllib3 previously wouldn't remove the HTTP request body when an HTTP r

4.2MEDIUM

CVE-2018-25091

< 1.24.2

urllib3 before 1.24.2 does not remove the authorization HTTP header when following a cross-origin redirect (i.e., a redirect that

6.1MEDIUM

CVE-2023-43804

< 1.26.17

urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the Cookie HTTP header special or provide any h

5.9MEDIUM

CVE-2023-40217

< 3.8.18

An issue was discovered in Python before 3.8.18, 3.9.x before 3.9.18, 3.10.x before 3.10.13, and 3.11.x before 3.11.5. It primaril

5.3MEDIUM

CVE-2023-41105

>= 3.11.0 and <= 3.11.4

An issue was discovered in Python 3.11 through 3.11.4. If a path containing '\0' bytes is passed to os.path.normpath(), the path w

7.5HIGH

CVE-2022-48566

< 3.6.13

An issue was discovered in compare_digest in Lib/hmac.py in Python through 3.9.1. Constant-time-defeating optimisations were possi

5.9MEDIUM

CVE-2022-48565

< 3.6.13

An XML External Entity (XXE) issue was discovered in Python through 3.9.1. The plistlib module no longer accepts entity declaratio

9.8CRITICAL

CVE-2022-48564

< 3.6.13

read_ints in plistlib.py in Python through 3.9.1 is vulnerable to a potential DoS attack via CPU and RAM exhaustion when processin

6.5MEDIUM

CVE-2022-48560

< 3.6.11

A use-after-free exists in Python through 3.9 via heappushpop in heapq.

7.5HIGH

CVE-2023-38898

all versions

An issue in Python cpython v.3.7 allows an attacker to obtain sensitive information via the _asyncio._swap_current_task component.

5.3MEDIUM

CVE-2023-36632

<= 3.11.4

The legacy email.utils.parseaddr function in Python through 3.11.4 allows attackers to trigger "RecursionError: maximum recursion

7.5HIGH

CVE-2023-33595

all versions

CPython v3.12.0 alpha 7 was discovered to contain a heap use-after-free via the function ascii_decode at /Objects/unicodeobject.c.

5.5MEDIUM

CVE-2023-32681

>= 2.3.0 and < 2.31.0

Requests is a HTTP library. Since Requests 2.3.0, Requests has been leaking Proxy-Authorization headers to destination servers whe

6.1MEDIUM

CVE-2023-27043

<= 2.7.18

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion

5.3MEDIUM

CVE-2023-24329

< 3.7.17

An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL

7.5HIGH

CVE-2022-40897

< 65.5.1

Python Packaging Authority (PyPA) setuptools before 65.5.1 allows remote attackers to cause a denial of service via HTML in a craf

5.9MEDIUM

CVE-2022-45199

< 9.3.0

Pillow before 9.3.0 allows denial of service via SAMPLESPERPIXEL.

7.5HIGH

CVE-2022-45198

< 9.2.0

Pillow before 9.2.0 performs Improper Handling of Highly Compressed GIF Data (Data Amplification).

7.5HIGH

CVE-2022-45061

<= 3.7.15

An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs

7.5HIGH

CVE-2022-42919

>= 3.7.3 and <= 3.7.15

Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux allows local privilege escalation in a non-default configuration. The

7.8HIGH

CVE-2022-37454

>= 3.6.0 and < 3.7.16

The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows at

9.8CRITICAL

CVE-2020-10735

>= 3.7.0 and < 3.7.14

A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using int("text"), a system

7.5HIGH

CVE-2021-4189

>= 3.6.0 and < 3.6.14

A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is h

5.3MEDIUM

CVE-2021-28861

>= 3.0.0 and < 3.7.14

Python 3.x through 3.10 has an open redirection vulnerability in lib/http/server.py due to no protection against multiple (/) at t

7.4HIGH

CVE-2017-20052

all versions

A vulnerability classified as problematic was found in Python 2.7.13. This vulnerability affects unknown code of the component pgA

5.0MEDIUM

CVE-2022-30595

all versions

libImaging/TgaRleDecode.c in Pillow 9.1.0 has a heap buffer overflow in the processing of invalid TGA image files.

9.8CRITICAL

CVE-2015-20107

>= 3.7.0 and <= 3.7.15

In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mai

7.6HIGH

CVE-2022-24303

< 9.0.1

Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled.

9.1CRITICAL

CVE-2018-25032

>= 3.7.0 and < 3.7.14

zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.

7.5HIGH

CVE-2022-26488

<= 3.7.12

In Python before 3.10.3 on Windows, local users can gain privileges because the search path is inadequately secured. The installer

7.0HIGH

CVE-2021-3733

< 3.6.14

There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (s

6.5MEDIUM

CVE-2021-3737

>= 3.6.0 and < 3.6.14

A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who

7.5HIGH

CVE-2022-0391

< 3.6.14

A flaw was found in Python, specifically within the urllib.parse module. This module helps break Uniform Resource Locator (URL) st

7.5HIGH

CVE-2022-22817

< 9.0.1

PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method

9.8CRITICAL

CVE-2022-22816

< 9.0.0

path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.

6.5MEDIUM

CVE-2022-22815

< 9.0.0

path_getbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path.

6.5MEDIUM

CVE-2021-23437

>= 5.2.0 and < 8.3.2

The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.

7.5HIGH

CVE-2021-34552

>= 1.0 and <= 1.1.7

Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker to pass controlled parameters directly i

9.8CRITICAL

CVE-2021-33503

>= 1.25.4 and < 1.26.5

An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing many @ characters in the authority component

7.5HIGH

CVE-2021-28678

< 8.2.0

An issue was discovered in Pillow before 8.2.0. For BLP data, BlpImagePlugin did not properly check that reads (after jumping to f

5.5MEDIUM

CVE-2021-28677

< 8.2.0

An issue was discovered in Pillow before 8.2.0. For EPS data, the readline implementation used in EPSImageFile has to deal with an

7.5HIGH

CVE-2021-28676

< 8.2.0

An issue was discovered in Pillow before 8.2.0. For FLI data, FliDecode did not properly check that the block advance was non-zero

7.5HIGH

CVE-2021-25288

< 8.2.0

An issue was discovered in Pillow before 8.2.0. There is an out-of-bounds read in J2kDecode, in j2ku_gray_i.

9.1CRITICAL

CVE-2021-25287

< 8.2.0

An issue was discovered in Pillow before 8.2.0. There is an out-of-bounds read in J2kDecode, in j2ku_graya_la.

9.1CRITICAL

CVE-2021-28675

< 8.2.0

An issue was discovered in Pillow before 8.2.0. PSDImagePlugin.PsdImageFile lacked a sanity check on the number of input layers re

5.5MEDIUM

CVE-2021-3426

< 2.7.18

There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent us

5.7MEDIUM

CVE-2021-29921

>= 3.8.0 and < 3.8.12

In Python before 3,9,5, the ipaddress library mishandles leading zero characters in the octets of an IP address string. This (in s

9.8CRITICAL

CVE-2021-25293

< 8.1.1

An issue was discovered in Pillow before 8.1.1. There is an out-of-bounds read in SGIRleDecode.c.

7.5HIGH

CVE-2021-25292

< 8.1.1

An issue was discovered in Pillow before 8.1.1. The PDF parser allows a regular expression DoS (ReDoS) attack via a crafted PDF fi

6.5MEDIUM

CVE-2021-25291

< 8.1.1

An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is an out-of-bounds read in TiffreadRGBATile via invalid ti

7.5HIGH

CVE-2021-25290

< 8.1.1

An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size.

7.5HIGH

CVE-2021-25289

< 8.1.1

An issue was discovered in Pillow before 8.1.1. TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files beca

9.8CRITICAL

CVE-2021-28363

>= 1.26.0 and < 1.26.4

The urllib3 library 1.26.x before 1.26.4 for Python omits SSL certificate validation in some cases involving HTTPS to HTTPS proxie

6.5MEDIUM

CVE-2021-27923

< 8.1.1

Pillow before 8.1.2 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained im

7.5HIGH

CVE-2021-27922

< 8.1.1

Pillow before 8.1.2 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained im

7.5HIGH

CVE-2021-27921

< 8.1.1

Pillow before 8.1.2 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained im

7.5HIGH

CVE-2021-23336

< 3.6.13

The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and bef

5.9MEDIUM

CVE-2021-3177

>= 3.6.0 and <= 3.6.12

Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution in ce

9.8CRITICAL

CVE-2020-35655

>= 4.3.0 and < 8.1.0

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and l

5.4MEDIUM

CVE-2020-35654

< 8.1.0

In Pillow before 8.1.0, TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpret

8.8HIGH

CVE-2020-35653

< 8.1.0

In Pillow before 8.1.0, PcxDecode has a buffer over-read when decoding a crafted PCX file because the user-supplied stride value i

7.1HIGH

CVE-2020-27619

>= 3.0.0 and < 3.6.13

In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.

9.8CRITICAL

CVE-2020-26137

< 1.25.9

urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and

6.5MEDIUM

CVE-2020-26116

>= 3.0.0 and < 3.5.10

http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if

7.2HIGH

CVE-2020-15801

>= 3.7.0 and < 3.7.9

In Python 3.8.4, sys.path restrictions specified in a python38._pth file are ignored, allowing code to be loaded from arbitrary lo

9.8CRITICAL

CVE-2019-20907

>= 3.5.0 and < 3.5.10

In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by t

7.5HIGH

CVE-2020-15523

>= 3.5.0 and < 3.5.10

In Python 3.6 through 3.6.10, 3.7 through 3.7.8, 3.8 through 3.8.4rc1, and 3.9 through 3.9.0b4 on Windows, a Trojan horse python3.

7.8HIGH

CVE-2020-11538

<= 7.0.0

In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a d

8.1HIGH

CVE-2020-10994

< 7.1.0

In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file.

5.5MEDIUM

CVE-2020-10379

< 7.1.0

In Pillow before 7.1.0, there are two Buffer Overflows in libImaging/TiffDecode.c.

7.8HIGH

CVE-2020-10378

< 7.1.0

In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX files where state-shuffle is in

5.5MEDIUM

CVE-2020-10177

< 7.1.0

Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c.

5.5MEDIUM

CVE-2020-14422

>= 3.0.0 and < 3.5.10

Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes, which mig

5.9MEDIUM

CVE-2020-1192

< 2020.5.0

A remote code execution vulnerability exists in Visual Studio Code when the Python extension loads workspace settings from a noteb

7.8HIGH

CVE-2020-1171

< 2020.5.0

A remote code execution vulnerability exists in Visual Studio Code when the Python extension loads configuration files after openi

8.8HIGH

CVE-2013-1753

>= 2.7.0 and < 2.7.9

The gzip_decode function in the xmlrpc client library in Python 3.4 and earlier allows remote attackers to cause a denial of servi

7.5HIGH

CVE-2020-7212

>= 1.25.2 and <= 1.25.7

The _encode_invalid_chars function in util/url.py in the urllib3 library 1.25.2 through 1.25.7 for Python allows a denial of servi

7.5HIGH

CVE-2014-4650

>= 2.7.0 and < 2.7.8

The CGIHTTPServer module in Python 2.7.5 and 3.3.4 does not properly handle URLs in which URL encoding is used for path separators

9.8CRITICAL

CVE-2019-9674

>= 3.2 and <= 3.8

Lib/zipfile.py in Python through 3.7.2 allows remote attackers to cause a denial of service (resource consumption) via a ZIP bomb.

7.5HIGH

CVE-2020-8492

>= 2.7.0 and <= 2.7.17

Python 2.7 through 2.7.17, 3.5 through 3.5.9, 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1 allows an HTTP server t

6.5MEDIUM

CVE-2020-8315

>= 3.6.0 and <= 3.6.10

In Python (CPython) 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1, an insecure dependency load upon launch on Windo

5.5MEDIUM

CVE-2019-19911

< 6.2.2

There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bi

7.5HIGH

CVE-2020-5313

< 6.2.2

libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow.

7.1HIGH

CVE-2020-5312

< 6.2.2

libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow.

9.8CRITICAL

CVE-2020-5311

< 6.2.2

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.

9.8CRITICAL

CVE-2020-5310

< 6.2.2

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc.

8.8HIGH

CVE-2016-1000110

>= 2.7.0 and < 2.7.13

The CGIHandler class in Python before 2.7.12 does not protect against the HTTP_PROXY variable name clash in a CGI script, which co

6.1MEDIUM

CVE-2012-5578

<= 0.10

Python keyring has insecure permissions on new databases allowing world-readable files to be created

6.2MEDIUM

CVE-2019-5010

>= 2.7.0 and < 2.7.16

An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.6.6. A specia

7.5HIGH

CVE-2012-5577

< 0.10

Python keyring lib before 0.10 created keyring files with world-readable permissions.

7.5HIGH

CVE-2019-18348

>= 2.0 and <= 2.7.17

An issue was discovered in urllib2 in Python 2.x through 2.7.17 and urllib in Python 3.x through 3.8.0. CRLF injection is possible

6.1MEDIUM

CVE-2019-17514

all versions

library/glob.html in the Python 2 and 3 documentation before 2016 has potentially misleading information about whether sorting occ

7.5HIGH

CVE-2019-16865

< 6.2.0

An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocat

7.5HIGH

CVE-2019-16935

>= 2.7.0 and < 2.7.17

The documentation XML-RPC server in Python through 2.7.16, 3.x through 3.6.9, and 3.7.x through 3.7.4 has XSS via the server_title

6.1MEDIUM

CVE-2019-16056

<= 2.7.16

An issue was discovered in Python through 2.7.16, 3.x through 3.5.7, 3.6.x through 3.6.9, and 3.7.x through 3.7.4. The email modul

7.5HIGH

CVE-2019-15903

>= 2.7.0 and < 2.7.17

In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a

7.5HIGH

CVE-2018-20852

>= 2.0 and <= 2.7.16

http.cookiejar.DefaultPolicy.domain_return_ok in Lib/http/cookiejar.py in Python before 3.7.3 does not correctly validate the doma

5.3MEDIUM

CVE-2019-13404

<= 2.7.16

The MSI installer for Python through 2.7.16 on Windows defaults to the C:\Python27 directory, which makes it easier for local user

7.8HIGH

CVE-2019-12900

>= 3.7.0 and < 3.7.13

BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.

9.8CRITICAL

CVE-2019-10160

>= 2.7.0 and < 2.7.17

A security regression of CVE-2019-9636 was discovered in python since commit d537ab0ff9767ef024f26246899728f0116b1ec3 affecting ve

9.8CRITICAL

CVE-2019-11324

< 1.24.2

The urllib3 library before 1.24.2 for Python mishandles certain cases where the desired set of CA certificates is different from t

7.5HIGH

CVE-2019-11236

<= 1.24.2

In the urllib3 library through 1.24.1 for Python, CRLF injection is possible if the attacker controls the request parameter.

6.1MEDIUM

CVE-2019-9948

>= 2.0 and < 2.7.17

urllib in Python 2.x through 2.7.16 supports the local_file: scheme, which makes it easier for remote attackers to bypass protecti

9.1CRITICAL

CVE-2019-9947

>= 2.7.0 and < 2.7.17

An issue was discovered in urllib2 in Python 2.x through 2.7.16 and urllib in Python 3.x through 3.7.3. CRLF injection is possible

6.1MEDIUM

CVE-2019-6690

all versions

python-gnupg 0.4.3 allows context-dependent attackers to trick gnupg to decrypt other ciphertext than intended. To perform the att

7.5HIGH

CVE-2019-9740

>= 2.0 and < 2.7.17

An issue was discovered in urllib2 in Python 2.x through 2.7.16 and urllib in Python 3.x through 3.7.3. CRLF injection is possible

6.1MEDIUM

CVE-2019-9636

>= 2.7.0 and < 2.7.17

Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc)

9.8CRITICAL

CVE-2018-20406

>= 3.4.0 and < 3.7.1

Modules/_pickle.c in Python before 3.7.1 has an integer overflow via a large LONG_BINPUT value that is mishandled during a "resize

7.5HIGH

CVE-2018-20060

< 1.23

urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect (i.e., a redirect

9.8CRITICAL

CVE-2018-18074

< 2.20.0

The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname htt

7.5HIGH

CVE-2018-14647

>= 2.7.0 and <= 2.7.15

Python's elementtree C accelerator failed to initialise Expat's hash salt during initialization. This could make it easy to conduc

7.5HIGH

CVE-2018-1000802

>= 2.7.0 and < 2.7.16

Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a C

9.8CRITICAL

CVE-2018-1061

< 2.7.15

python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LI

6.5MEDIUM

CVE-2018-1060

>= 2.7.0 and < 2.7.15

python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in pop3lib's apop()

7.5HIGH

CVE-2016-9063

>= 2.7.0 and < 2.7.15

An integer overflow during the parsing of XML using the Expat library. This vulnerability affects Firefox < 50.

9.8CRITICAL

CVE-2018-1000117

>= 3.2.0 and < 3.4.9

Python Software Foundation CPython version From 3.2 until 3.6.4 on Windows contains a Buffer Overflow vulnerability in os.symlink(

6.7MEDIUM

CVE-2017-18207

<= 3.6.4

The Wave_read._read_fmt_chunk function in Lib/wave.py in Python through 3.6.4 does not ensure a nonzero channel value, which allow

6.5MEDIUM

CVE-2018-1000030

<= 2.7.14

Python 2.7.14 is vulnerable to a Heap-Buffer-Overflow as well as a Heap-Use-After-Free. Python versions prior to 2.7.14 may also b

3.6LOW

CVE-2017-17522

<= 3.6.3

Lib/webbrowser.py in Python through 3.6.3 does not validate strings before launching the program specified by the BROWSER environm

8.8HIGH

CVE-2017-1000158

< 2.7.15

CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the PyString_DecodeEscape function in stringobject.c, re

9.8CRITICAL

CVE-2014-4616

>= 2.7.0 and < 2.7.7

Array index error in the scanstring function in the _json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows cont

5.9MEDIUM

CVE-2017-9233

>= 2.7.0 and < 2.7.15

XML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat XML Parser Library) allows attackers to put the parser in a

7.5HIGH

CVE-2016-3076

all versions

Heap-based buffer overflow in the j2k_encode_entry function in Pillow 2.5.0 through 3.1.1 allows remote attackers to cause a denia

5.5MEDIUM

CVE-2016-9015

all versions

Versions 1.17 and 1.18 of the Python urllib3 library suffer from a vulnerability that can cause them, in certain configurations, t

3.7LOW

CVE-2016-9190

<= 3.3.1

Pillow before 3.3.2 allows context-dependent attackers to execute arbitrary code by using the "crafted image file" approach, relat

7.8HIGH

CVE-2016-9189

<= 3.3.1

Pillow before 3.3.2 allows context-dependent attackers to obtain sensitive information by using the "crafted image file" approach,

5.5MEDIUM

CVE-2016-5699

<= 2.7.9

CRLF injection vulnerability in the HTTPConnection.putheader function in urllib2 and urllib in CPython (aka Python) before 2.7.10

6.1MEDIUM

CVE-2016-5636

<= 2.7.11

Integer overflow in the get_data function in zipimport.c in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before

9.8CRITICAL

CVE-2016-0772

<= 2.7.11

The smtplib library in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when

6.5MEDIUM

CVE-2016-2183

>= 2.7.0 and < 2.7.13

The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bou

7.5HIGH

CVE-2016-4472

>= 2.7.0 and < 2.7.15

The overflow protection in Expat is removed by compilers with certain optimization settings, which allows remote attackers to caus

8.1HIGH

CVE-2016-3189

>= 3.7.0 and < 3.7.13

Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a cra

6.5MEDIUM

CVE-2013-7440

<= 2.7.8

The ssl.match_hostname function in CPython (aka Python) before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in ho

5.9MEDIUM

CVE-2016-0718

>= 2.7.0 and < 2.7.15

Expat allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a malformed i

9.8CRITICAL

CVE-2016-4009

<= 3.1.0

Integer overflow in the ImagingResampleHorizontal function in libImaging/Resample.c in Pillow before 3.1.1 allows remote attackers

9.8CRITICAL

CVE-2016-2533

<= 3.1.0

Buffer overflow in the ImagingPcdDecode function in PcdDecode.c in Pillow before 3.1.1 and Python Imaging Library (PIL) 1.1.7 and

6.5MEDIUM

CVE-2016-0775

<= 3.1.0

Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause

6.5MEDIUM

CVE-2016-0740

<= 3.1.0

Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1.1 allows remote attackers to

6.5MEDIUM

CVE-2015-5652

<= 3.5.0

Untrusted search path vulnerability in python.exe in Python through 3.5.0 on Windows allows local users to gain privileges via a T

CVE-2015-1283

>= 2.7.0 and < 2.7.12

Multiple integer overflows in the XML_GetBuffer function in Expat through 2.1.0, as used in Google Chrome before 44.0.2403.89 and

CVE-2014-3598

<= 2.5.2

The Jpeg2KImagePlugin plugin in Pillow before 2.5.3 allows remote attackers to cause a denial of service via a crafted image.

CVE-2015-2296

all versions

The resolve_redirects function in sessions.py in requests 2.1.0 through 2.5.3 allows remote attackers to conduct session fixation

CVE-2014-9601

<= 2.6.2

Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a lar

CVE-2014-9365

all versions

The HTTP clients in the (1) httplib, (2) urllib, (3) urllib2, and (4) xmlrpclib libraries in CPython (aka Python) 2.x before 2.7.9

CVE-2014-2667

all versions

Race condition in the _get_masked_mode function in Lib/os.py in Python 3.2 through 3.5, when exist_ok is set to true and multiple

CVE-2014-1830

<= 2.2.1

Requests (aka python-requests) before 2.3.0 allows remote servers to obtain sensitive information by reading the Proxy-Authorizati

CVE-2014-1829

<= 2.2.1

Requests (aka python-requests) before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header i

CVE-2014-7185

<= 2.7.7

Integer overflow in bufferobject.c in Python before 2.7.8 allows context-dependent attackers to obtain sensitive information from

CVE-2014-3589

<= 2.3.1

PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to c

CVE-2014-0224

>= 2.7.0 and < 2.7.8

OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec mes

7.4HIGH

CVE-2013-7040

all versions

Python 2.7 before 3.4 only uses the last eight bits of the prefix to randomize hash values, which causes it to compute hash values

CVE-2014-3007

all versions

Python Image Library (PIL) 1.1.7 and earlier and Pillow 2.3 might allow remote attackers to execute arbitrary commands via shell m

CVE-2013-7338

all versions

Python before 3.3.4 RC1 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a file size v

CVE-2014-1933

<= 2.3.0

The (1) JpegImagePlugin.py and (2) EpsImagePlugin.py scripts in Python Image Library (PIL) 1.1.7 and earlier and Pillow before 2.3

CVE-2014-1932

<= 2.3.0

The (1) load_djpeg function in JpegImagePlugin.py, (2) Ghostscript function in EpsImagePlugin.py, (3) load function in IptcImagePl

CVE-2014-1912

all versions

Buffer overflow in the socket.recvfrom_into function in Modules/socketmodule.c in Python 2.5 before 2.7.7, 3.x before 3.3.4, and 3

CVE-2013-0340

>= 3.6.0 and < 3.6.15

expat before version 2.4.0 does not properly handle entities expansion unless an application developer uses the XML_SetEntityDeclH

CVE-2013-2099

all versions

Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versi

CVE-2013-4238

all versions

The ssl.match_hostname function in the SSL module in Python 2.6 through 3.4 does not properly handle a '\0' character in a domain

CVE-2013-1633

<= 0.7b4

easy_install in setuptools before 0.7 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity chec

CVE-2012-4571

all versions

Python Keyring 0.9.1 does not securely initialize the cipher when encrypting passwords for CryptedFileKeyring files, which makes i

CVE-2012-1150

<= 2.6.7

Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the abi

CVE-2012-0845

<= 2.6.7

SimpleXMLRPCServer.py in SimpleXMLRPCServer in Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 a

CVE-2011-4944

all versions

Python 2.6 through 3.2 creates ~/.pypirc with world-readable permissions before changing them after data has been written, which i

CVE-2012-2135

>= 2.7.0 and < 2.7.4

The utf-16 decoder in Python 3.1 through 3.3 does not update the aligned_end variable after calling the unicode_decode_call_errorh

CVE-2012-0876

>= 2.6.0 and < 2.6.8

The XML parser (xmlparse.c) in expat before 2.1.0 computes hash values without restricting the ability to trigger hash collisions

CVE-2011-4940

<= 2.5.6

The list_directory function in Lib/SimpleHTTPServer.py in SimpleHTTPServer in Python before 2.5.6c1, 2.6.x before 2.6.7 rc2, and 2

CVE-2011-1521

all versions

The urllib and urllib2 modules in Python 2.x before 2.7.2 and 3.x before 3.2.1 process Location headers that specify redirection t

CVE-2011-1015

all versions

The is_cgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read scri

CVE-2010-3493

all versions

Multiple race conditions in smtpd.py in the smtpd module in Python 2.6, 2.7, 3.1, and 3.2 alpha allow remote attackers to cause a

CVE-2010-3492

<= 2.7

The asyncore module in Python before 3.2 does not properly handle unsuccessful calls to the accept function, and does not have acc

CVE-2010-2089

>= 2.5.0 and < 2.5.6

The audioop module in Python 2.7 and 3.2 does not verify the relationships between size arguments and byte string lengths, which a

CVE-2010-1634

>= 2.5.0 and < 2.5.6

Multiple integer overflows in audioop.c in the audioop module in Python 2.6, 2.7, 3.1, and 3.2 allow context-dependent attackers t

CVE-2010-1450

all versions

Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 allow remote attackers to have an unspecified impa

CVE-2010-1449

all versions

Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 allows remote attackers to have an unspecified impact via a

CVE-2009-4134

all versions

Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service (application crash) via a

CVE-2008-5983

< 2.6.6

Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prep

CVE-2008-5031

all versions

Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, allow context-dependent attackers to have an unknown impact via

CVE-2008-4864

>= 1.5.2 and < 2.4.6

Multiple integer overflows in imageop.c in the imageop module in Python 1.5.2 through 2.5.1 allow context-dependent attackers to b

CVE-2008-3144

<= 2.5.2

Multiple integer overflows in the PyOS_vsnprintf function in Python/mysnprintf.c in Python 2.5.2 and earlier allow context-depende

CVE-2008-3143

< 2.5.12

Multiple integer overflows in Python before 2.5.2 might allow context-dependent attackers to have an unknown impact via vectors re

CVE-2008-3142

< 2.4.6

Multiple buffer overflows in Python 2.5.2 and earlier on 32bit platforms allow context-dependent attackers to cause a denial of se

CVE-2008-2316

<= 2.5.2

Integer overflow in _hashopenssl.c in the hashlib module in Python 2.5.2 and earlier might allow context-dependent attackers to de

CVE-2008-2315

<= 2.5.2

Multiple integer overflows in Python 2.5.2 and earlier allow context-dependent attackers to have an unknown impact via vectors rel

CVE-2008-1679

< 2.5.3

Multiple integer overflows in imageop.c in Python before 2.5.3 allow context-dependent attackers to cause a denial of service (cra

CVE-2008-1887

<= 2.5.2

Python 2.5.2 and earlier allows context-dependent attackers to execute arbitrary code via multiple vectors that cause a negative s

CVE-2008-1721

>= 2.4.0 and < 2.4.6

Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary cod

CVE-2007-4965

<= 2.5.1

Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial o

CVE-2007-4559

< 3.6.16

Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assi

9.8CRITICAL

CVE-2007-2052

all versions

Off-by-one error in the PyLocale_strxfrm function in Modules/_localemodule.c for Python 2.4 and 2.5 causes an incorrect buffer siz

CVE-2006-4980

< 2.3.6

Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denia

CVE-2006-1542

<= 2.4.2

Stack-based buffer overflow in Python 2.4.2 and earlier, running on Linux 2.6.12.5 under gcc 4.0.3 with libc 2.3.5, allows local u

CVE-2005-0089

< 2.3.5

The SimpleXMLRPCServer library module in Python 2.2, 2.3 before 2.3.5, and 2.4, when used by XML-RPC servers that use the register

CVE-2004-0150

>= 2.2.0 and < 2.2.2

Buffer overflow in the getaddrinfo function in Python 2.2 before 2.2.2, when IPv6 support is disabled, allows remote attackers to

CVE-2002-1119

< 2.2.2

os._execvpe from os.py in Python 2.2.1 and earlier creates temporary files with predictable names, which could allow local users t