4 matches found
Out-of-bounds Read
Overview mesop is a Build UIs in Python Affected versions of this package are vulnerable to Out-of-bounds Read through the WebSocket handler. An attacker can exhaust system resources and cause service outages by sending a rapid succession of WebSocket messages, which forces the server to spawn an...
CVE-2026-33057
Mesop is a Python-based UI framework that allows users to build web applications. In versions 1.2.2 and below, an explicit web endpoint inside the ai/ testing module infrastructure directly ingests untrusted Python code strings unconditionally without authentication measures, yielding standard...
dyad (=0.1.1), dyad-app (>=0.1.0 <=0.1.2) potentially affected by CVE-2026-33057 via mesop (=1.0.0rc1)
mesop PYPI version =1.0.0rc1 is affected by a known vulnerability. The following packages have a transitive dependency on mesop and may be impacted: - dyad =0.1.1 - dyad-app =0.1.0, =0.1.2 Source cves: CVE-2026-33057 Source advisory: OSV:GHSA-GJGX-RVQR-6W6V...
EUVD-2025-14804
Malicious code in bioql PyPI...