Lucene search
+L

7044 matches found

PyPA
PyPA
•added 2026/01/12 11:15 p.m.•14 views

PYSEC-2026-75

LangChain versions up to and including 0.3.1 contain a regular expression denial-of-service ReDoS vulnerability in the MRKLOutputParser.parse method libs/langchain/langchain/agents/mrkl/outputparser.py. The parser applies a backtracking-prone regular expression when extracting tool actions from...

8.7CVSS6AI score0.0041EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2026/01/12 11:15 p.m.•11 views

PYSEC-2026-85

LlamaIndex run-llama/llamaindex versions up to and including 0.11.6 contain an unsafe deserialization vulnerability in BGEM3Index.loadfromdisk in llamaindex/indices/managed/bgem3/base.py. The function uses pickle.load to deserialize multiembedstore.pkl from a user-supplied persistdir without...

8.4CVSS6.3AI score0.00289EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2026/01/12 5:15 p.m.•11 views

PYSEC-2026-90

MindsDB is a platform for building artificial intelligence from enterprise data. Prior to version 25.11.1, an unauthenticated path traversal in the file upload API lets any caller read arbitrary files from the server filesystem and move them into MindsDB’s storage, exposing sensitive data. The PU...

9.1CVSS5.9AI score0.19213EPSS
Exploits2References2Affected Software1
PyPA
PyPA
•added 2026/01/10 7:16 a.m.•12 views

PYSEC-2026-143

vLLM is an inference and serving engine for large language models LLMs. In versions from 0.6.4 to before 0.12.0, users can crash the vLLM engine serving multimodal models that use the Idefics3 vision model implementation by sending a specially crafted 1x1 pixel image. This causes a tensor dimensi...

7.5CVSS6.3AI score0.00403EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2026/01/07 6:15 p.m.•3 views

PYSEC-2026-2264

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to version 6.8.3, an open redirect vulnerability exists in the OpenCTI platform's SAML authentication endpoint /auth/saml/callback. By manipulating the RelayState parameter, an attacker can...

6.1CVSS6AI score0.0022EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2026/01/05 6:15 p.m.•14 views

PYSEC-2026-116

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to version 6.8.1, the GraphQL mutation "WorkspacePopoverDeletionMutation" allows users to delete workspace-related objects such as dashboards and investigation cases. However, the mutation...

9.1CVSS5.8AI score0.00204EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2025/12/31 2:15 a.m.•12 views

PYSEC-2025-90

cbor2 provides encoding and decoding for the Concise Binary Object Representation CBOR serialization format. Starting in version 3.0.0 and prior to version 5.8.0, whhen a CBORDecoder instance is reused across multiple decode operations, values marked with the shareable tag 28 persist in memory an...

7.5CVSS7.1AI score0.00423EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2025/12/23 9:15 p.m.•19 views

PYSEC-2025-218

Hugging Face Transformers GLM4 Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in that the...

7.8CVSS7.6AI score0.00262EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2025/12/23 9:15 p.m.•11 views

PYSEC-2025-216

Hugging Face Transformers HuBERT convertconfig Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in that the...

7.8CVSS7.6AI score0.00278EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2025/12/23 9:15 p.m.•55 views

PYSEC-2025-217

Hugging Face Transformers X-CLIP Checkpoint Conversion Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this...

7.8CVSS7.6AI score0.00315EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2025/12/23 9:15 p.m.•19 views

PYSEC-2025-213

Hugging Face Transformers megatrongpt2 Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in...

7.8CVSS7.6AI score0.00262EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2025/12/23 9:15 p.m.•10 views

PYSEC-2025-214

Hugging Face Transformers SEW convertconfig Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in that the targe...

7.8CVSS7.6AI score0.00278EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2025/12/23 9:15 p.m.•9 views

PYSEC-2025-211

Hugging Face Transformers Perceiver Model Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability ...

7.8CVSS7.6AI score0.00262EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2025/12/23 9:15 p.m.•9 views

PYSEC-2025-212

Hugging Face Transformers Transformer-XL Model Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this...

7.8CVSS7.6AI score0.00262EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2025/12/23 9:15 p.m.•11 views

PYSEC-2025-215

Hugging Face Transformers SEW-D convertconfig Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in that the...

7.8CVSS7.6AI score0.00278EPSS
Exploits0References1Affected Software1
PyPA
PyPA
•added 2025/12/19 6:15 p.m.•11 views

PYSEC-2025-125

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7.0, if an arbitrary path is specified in the request body's fspath, the server serializes the Flow object into JSON and creates/overwrites a file at that path. There is no path restriction,...

7.1CVSS5.9AI score0.03631EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2025/12/18 7:16 p.m.•18 views

PYSEC-2025-103

Dify v1.9.1 is vulnerable to Insecure Permissions. An unauthenticated attacker can directly send HTTP GET requests to the /console/api/system-features endpoint without any authentication credentials or session tokens. The endpoint fails to implement proper authorization checks, allowing anonymous...

7.5CVSS5.8AI score0.28042EPSS
Exploits0References6Affected Software1
PyPA
PyPA
•added 2025/12/17 4:16 p.m.•67 views

PYSEC-2025-185

In python-jose 3.3.0 specifically jwe.decrypt, a vulnerability allows an attacker to cause a Denial-of-Service DoS condition by crafting a malicious JSON Web Encryption JWE token with an exceptionally high compression ratio. When this token is processed by the server, it results in significant...

5.3CVSS5.8AI score0.00169EPSS
Exploits1References2Affected Software1
PyPA
PyPA
•added 2025/12/17 12:15 p.m.•9 views

PYSEC-2025-87

Edge3 Worker RPC RCE on Airflow 2.This issue affects Apache Airflow Providers Edge3: before 2.0.0 - and only if you installed and configured it on Airflow 2.The Edge3 provider support in Airflow 2 has been always development-only and not officially released, however if you installed and configure...

9.8CVSS5.8AI score0.00837EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2025/12/16 1:15 a.m.•12 views

PYSEC-2025-113

Fickling is a Python pickling decompiler and static analyzer. Versions prior to 0.1.6 had a bypass caused by pty missing from the block list of unsafe module imports. This led to unsafe pickles based on pty.spawn being incorrectly flagged as LIKELYSAFE, and was fixed in version 0.1.6. This impact...

8.5CVSS5.8AI score0.00238EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2025/12/16 1:15 a.m.•12 views

PYSEC-2025-233

Weblate is a web based localization tool. In versions prior to 5.15, it was possible to retrieve user notification settings or list all users via API. Version 5.15 fixes the issue...

4.3CVSS5.8AI score0.00239EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2025/12/16 1:15 a.m.•11 views

PYSEC-2025-232

Weblate is a web based localization tool. In versions prior to 5.15, it was possible to trigger repository updates for many repositories via a crafted webhook payload. Version 5.15 fixes the issue. As a workaround, disabling webhooks completely using ENABLEHOOKS avoids this vulnerability...

5.3CVSS5.8AI score0.00239EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2025/12/16 12:16 a.m.•12 views

PYSEC-2025-231

Weblate is a web based localization tool. The Create Component functionality in Weblate allows authorized users to add new translation components by specifying both a version control system and a source code repository URL to pull from. However, prior to version 5.15, the repository URL field is...

5CVSS5.9AI score0.0019EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2025/12/15 2:15 p.m.•15 views

PYSEC-2025-111

An issue was discovered in allauth-django before 65.13.0. Both Okta and NetIQ were using preferredusername as the identifier for third-party provider accounts. That value may be mutable and should therefore be avoided for authorization decisions. The providers are now using sub instead...

5.4CVSS5.8AI score0.00143EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2025/12/15 2:15 p.m.•13 views

PYSEC-2025-110

An issue was discovered in allauth-django before 65.13.0. IdP: marking a user as isactive=False after having handed tokens for that user while the account was still active had no effect. Fixed the access/refresh tokens are now rejected...

5.4CVSS5.8AI score0.00143EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2025/12/15 12:15 p.m.•14 views

PYSEC-2025-86

A vulnerability in Apache Airflow allowed authenticated UI users to view secret values in rendered templates due to secrets not being properly redacted,potentially exposing secrets to users without the appropriate authorization.Users are recommended to upgrade to version 3.1.4, which fixes this...

6.5CVSS5.8AI score0.00413EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2025/12/15 12:15 a.m.•13 views

PYSEC-2025-135

A flaw has been found in Mayan EDMS up to 4.10.1. The impacted element is an unknown function of the file /authentication/. This manipulation causes open redirect. It is possible to initiate the attack remotely. The exploit has been published and may be used. Upgrading to version 4.10.2 is...

6.1CVSS5.3AI score0.00408EPSS
Exploits1References7Affected Software1
PyPA
PyPA
•added 2025/12/14 11:15 p.m.•14 views

PYSEC-2025-134

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is...

6.1CVSS4.2AI score0.00399EPSS
Exploits1References7Affected Software1
PyPA
PyPA
•added 2025/12/12 7:15 a.m.•2 views

PYSEC-2025-267

Tornado is a Python web framework and asynchronous networking library. Versions 6.5.2 and below use an inefficient algorithm when parsing parameters for HTTP header values, potentially causing a DoS. The parseparam function in httputil.py is used to parse specific HTTP header values, such as thos...

7.5CVSS7AI score0.00378EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2025/12/12 6:15 a.m.•2 views

PYSEC-2025-265

Tornado is a Python web framework and asynchronous networking library. In versions 6.5.2 and below, the supplied reason phrase is used unescaped in HTTP headers where it could be used for header injection or in HTML in the default error page where it could be used for XSS and can be exploited by...

6.1CVSS6.2AI score0.00192EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2025/12/12 6:15 a.m.•3 views

PYSEC-2025-266

Tornado is a Python web framework and asynchronous networking library. In versions 6.5.2 and below, a single maliciously crafted HTTP request can block the server's event loop for an extended period, caused by the HTTPHeaders.add method. The function accumulates values using string concatenation...

7.5CVSS6.9AI score0.00403EPSS
Exploits0References3Affected Software1
PyPA
PyPA
•added 2025/12/08 7:15 p.m.•12 views

PYSEC-2025-89

NUT-14 allows cashu tokens to be created with a preimage hash. However, nutshell cashubtc/nuts before 0.18.0 do not validate the size of preimage when the token is spent. The preimage is stored by the mint and attacker can exploit this vulnerability to fill the mint's db nd disk with arbitrary da...

9.1CVSS5.9AI score0.00364EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2025/12/05 11:15 p.m.•17 views

PYSEC-2025-78

Langflow versions up to and including 1.6.9 contain a chained vulnerability that enables account takeover and remote code execution. An overly permissive CORS configuration alloworigins='' with allowcredentials=True combined with a refresh token cookie configured as SameSite=None allows a malicio...

9.4CVSS8AI score0.7889EPSS
Exploits3References4Affected Software1
PyPA
PyPA
•added 2025/12/02 4:15 p.m.•12 views

PYSEC-2025-109

An issue was discovered in 5.2 before 5.2.9, 5.1 before 5.1.15, and 4.2 before 4.2.27.Algorithmic complexity in django.core.serializers.xmlserializer.getInnerText allows a remote attacker to cause a potential denial-of-service attack triggering CPU and memory exhaustion via specially crafted XML...

7.5CVSS7.3AI score0.02143EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2025/12/02 4:15 p.m.•15 views

PYSEC-2025-104

An issue was discovered in 5.2 before 5.2.9, 5.1 before 5.1.15, and 4.2 before 4.2.27.FilteredRelation is subject to SQL injection in column aliases, using a suitably crafted dictionary, with dictionary expansion, as the kwargs passed to QuerySet.annotate or QuerySet.alias on PostgreSQL.Earlier,...

4.3CVSS7.3AI score0.00904EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2025/11/27 11:15 a.m.•11 views

PYSEC-2025-154

Emails sent by pretix can utilize placeholders that will be filled with customer data. For example, when name is used in an email template, it will be replaced with the buyer's name for the final email. If the name of the attendee contained HTML or Markdown formatting, this was rendered as HTML i...

6.1CVSS5.8AI score0.00158EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2025/11/26 7:15 p.m.•32 views

PYSEC-2025-219

An issue was discovered in Overhang.IO tutor-open-edx overhangio/tutor 20.0.2 allowing local unauthorized attackers to gain access to sensitive information due to the absence of proper cache-control HTTP headers and client-side session checks...

3.3CVSS5.8AI score0.00199EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2025/11/24 6:15 p.m.•31 views

PYSEC-2025-77

A vulnerability has been identified in keylime where an attacker can exploit this flaw by registering a new agent using a different Trusted Platform Module TPM device but claiming an existing agent's unique identifier UUID. This action overwrites the legitimate agent's identity, enabling the...

8.2CVSS5.7AI score0.00388EPSS
Exploits0References10
PyPA
PyPA
•added 2025/11/21 7:16 p.m.•11 views

PYSEC-2025-138

MLX is an array framework for machine learning on Apple silicon. Prior to version 0.29.4, there is a heap buffer overflow in mlx::core::load when parsing malicious NumPy .npy files. Attacker-controlled file causes 13-byte out-of-bounds read, leading to crash or information disclosure. This issue...

9.1CVSS5.9AI score0.00467EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2025/11/21 7:16 p.m.•11 views

PYSEC-2025-139

MLX is an array framework for machine learning on Apple silicon. Prior to version 0.29.4, there is a segmentation fault in mlx::core::loadgguf when loading malicious GGUF files. Untrusted pointer from external gguflib library is dereferenced without validation, causing application crash. This iss...

7.5CVSS5.7AI score0.00336EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2025/11/19 5:15 p.m.•2 views

PYSEC-2025-237

authentik is an open-source Identity Provider. Prior to versions 2025.8.5 and 2025.10.2, when authenticating with clientid and clientsecret to an OAuth provider, authentik creates a service account for the provider. In previous authentik versions, authentication for this account was possible even...

4.8CVSS6.9AI score0.00221EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2025/11/18 7:15 p.m.•2 views

PYSEC-2025-253

Unsafe Deserialization vulnerability in Modular Max Serve before 25.6, specifically when the "--experimental-enable-kvcache-agent" feature is used allowing attackers to execute arbitrary code...

8.4CVSS6.4AI score0.00301EPSS
Exploits1References6Affected Software1
PyPA
PyPA
•added 2025/11/18 6:16 p.m.•2 views

PYSEC-2025-238

Multiple vulnerabilities exist in cbor2 through version 5.7.0 in the decodedefinitelongstring function of the C extension decoder source/decoder.c: 1 Integer Underflow Leading to Out-of-Bounds Read CWE-191, CWE-125: An incorrect variable reference and missing state reset in the chunk processing...

7.5CVSS6.1AI score0.00466EPSS
Exploits1References3Affected Software1
PyPA
PyPA
•added 2025/11/12 10:15 p.m.•12 views

PYSEC-2025-112

DuckDB is a SQL database management system. DuckDB implemented block-based encryption of DB on the filesystem starting with DuckDB 1.4.0. There are a few issues related to this implementation. The DuckDB can fall back to an insecure random number generator pcg32 to generate cryptographic keys or...

6.9CVSS5.8AI score0.00108EPSS
Exploits0References4Affected Software1
PyPA
PyPA
•added 2025/11/12 9:15 p.m.•10 views

PYSEC-2025-210

An issue was discovered in PyTorch v2.5 and v2.7.1. Omission of profiler.stop can cause torch.profiler.profile PythonTracer to crash or hang during finalization, leading to a Denial of Service DoS...

3.3CVSS6.1AI score0.00121EPSS
Exploits1References4Affected Software1
PyPA
PyPA
•added 2025/11/10 10:15 p.m.•11 views

PYSEC-2025-91

changedetection.io is a free open source web page change detection tool. A Stored Cross Site Scripting is present in changedetection.io Watch update API in versions prior to 0.50.34 due to insufficient security checks. Two scenarios are possible. In the first, an attacker can insert a new watch...

5.4CVSS6AI score0.00441EPSS
Exploits1References1Affected Software1
PyPA
PyPA
•added 2025/11/07 9:15 p.m.•10 views

PYSEC-2025-73

Datasette is an open source multi-tool for exploring and publishing data. In versions 0.65.1 and below and 1.0a0 through 1.0a19, deployed instances of Datasette include an open redirect vulnerability. Hits to the path //example.com/foo/bar/ the trailing slash is required will redirect the user to...

6.9CVSS5.7AI score0.00389EPSS
Exploits0References3
PyPA
PyPA
•added 2025/11/06 9:15 p.m.•11 views

PYSEC-2025-230

Weblate is a web based localization tool. In versions 5.14 and below, Weblate leaks the IP address of the project member inviting the user to the project in the audit log. The audit log includes IP addresses from admin-triggered actions, which can be viewed by invited users. This issue is fixed i...

3.5CVSS5.8AI score0.00181EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2025/11/06 9:15 p.m.•11 views

PYSEC-2025-126

Weblate is a web based localization tool. In versions 5.14 and below, Weblate leaks the IP address of the project member inviting the user to the project in the audit log. The audit log includes IP addresses from admin-triggered actions, which can be viewed by invited users. This issue is fixed i...

3.5CVSS5.8AI score0.00181EPSS
Exploits0References2Affected Software1
PyPA
PyPA
•added 2025/11/05 3:15 p.m.•11 views

PYSEC-2025-108

An issue was discovered in 5.1 before 5.1.14, 4.2 before 4.2.26, and 5.2 before 5.2.8.The methods QuerySet.filter, QuerySet.exclude, and QuerySet.get, and the class Q, are subject to SQL injection when using a suitably crafted dictionary, with dictionary expansion, as the connector...

9.1CVSS7.3AI score0.19396EPSS
Exploits10References5Affected Software1
Total number of security vulnerabilities7044