aces-apps (=1.5.4), aggfly (>=0.1.0 <=0.1.5) +411 more potentially affected by CVE-2026-23528 via distributed (>=1.13.0 <=2025.9.2)

distributed PYPI version =1.13.0, =0.1.0, =0.3.9, =0.0.1, =0.2.0, =0.1.0, =0.0.13b20200721, =0.5.3b20221014 and more Source cves: CVE-2026-23528 Source advisory: OSV:PYSEC-2026-169...

PYSEC-2026-169

Dask distributed is a distributed task scheduler for Dask. Prior to 2026.1.0, when Jupyter Lab, jupyter-server-proxy, and Dask distributed are all run together, it is possible to craft a URL which will result in code being executed by Jupyter due to a cross-side-scripting XSS bug in the Dask...

Huawei HarmonyOS 信息泄露漏洞

Huawei HarmonyOS is an operating system from Huawei China. Huawei HarmonyOS is vulnerable to a distributed directory path interface vulnerability. An attacker could exploit this vulnerability to compromise user confidentiality...

autobazaar (=0.1.0), azuremlftk (>=0.1.19008.12a1 <=0.1.19032.1) +14 more potentially affected by CVE-2021-42343 via distributed (>=1.13.0 <=2020.12.0)

distributed PYPI version =1.13.0, =0.1.19008.12a1, =1.1.1.6, =0.5.0, =0.1.3, =0.2.0, =0.0.1, =0.5.0, =0.3.1, =0.0.0, =0.0.6, =0.3.6 and more Source cves: CVE-2021-42343 Source advisory: OSV:PYSEC-2021-871...