Lucene search
K
VulnersosvRecent

26517 matches found

vulnersOsv
vulnersOsv
added yesterday1 views

dev.sigstore:sigstore-maven-plugin (=2.0.0), org.apache.maven.resolver:maven-resolver-generator-sigstore (>=2.0.14 <=2.0.18) +1 more potentially affected by CVE-2026-48791 via dev.sigstore:sigstore-java (=2.0.0)

dev.sigstore:sigstore-java MAVEN version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on dev.sigstore:sigstore-java and may be impacted: - dev.sigstore:sigstore-maven-plugin =2.0.0 - org.apache.maven.resolver:maven-resolver-generator-sigstore...

5.7AI score
Exploits0
vulnersOsv
vulnersOsv
added yesterday1 views

ap-relay (>=0.3.11 <=0.3.21), argon2-creds (=0.2.3) +126 more potentially affected by unknown CVE via ammonia (>=2.1.4 <=3.3.1)

ammonia CARGO version =2.1.4, =0.3.11, =0.1.0, =0.0.1, =1.0.0, =0.1.4, =1.0.0, =0.2.3, =0.8.0, =0.1.1, =0.2.6, =0.5.2, =0.5.10 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-0193...

5.7AI score
Exploits0
vulnersOsv
vulnersOsv
added yesterday1 views

activitystreams-vocabulary (=0.1.0), bubble-bath (=0.1.3) +9 more potentially affected by unknown CVE via ammonia (=4.1.2)

ammonia CARGO version =4.1.2 is affected by a known vulnerability. The following packages have a transitive dependency on ammonia and may be impacted: - activitystreams-vocabulary =0.1.0 - bubble-bath =0.1.3 - cemento =0.1.0, =0.6.0, =0.7.9, =0.1.0, =0.1.0, =0.2.5, =0.2.6 Source cves: unknown CVE...

5.7AI score
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

ait-dsn (=2.0.0), ait-gui (>=2.4.0 <=2.4.1) potentially affected by CVE-2026-47731 via ait-core (>=2.3.5 <=2.5.2)

ait-core PYPI version =2.3.5, =2.4.0, =2.4.1 Source cves: CVE-2026-47731 Source advisory: OSV:PYSEC-2026-265...

5.7AI score0.00163EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

ayy (>=0.1.6 <=0.1.8), camel-database-agent (>=0.1.0 <=0.2.0) +21 more potentially affected by CVE-2026-53753 via crawl4ai (>=0.3.5 <=0.8.5)

crawl4ai PYPI version =0.3.5, =0.1.6, =0.1.0, =0.2.0, =0.1.0, =0.0.38, =0.5.0, =0.1.0, =0.1.6 and more Source cves: CVE-2026-53753 Source advisory: OSV:PYSEC-2026-319...

10CVSS5.7AI score0.0045EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

01os (>=0.0.1 <=0.0.14), 0xpwn (=0.1.1) +846 more potentially affected by CVE-2026-49468 via litellm (>=0.1.400 <=1.83.9)

litellm PYPI version =0.1.400, =0.0.1, =0.0.14, =0.0.14, =0.0.1a0, =0.3.5, =0.6.0, =0.7.3, =0.1.0, =0.4.0, =0.8.1, =0.1.0, =0.1.39, =0.2.1, =0.2.1.10102025 - agent-memory-server =0.15.0 and more Source cves: CVE-2026-49468 Source advisory: OSV:PYSEC-2026-388...

9.8CVSS5.7AI score0.00559EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

3-04-2025-ttm (=0.1.0), a-mailx (=0.1.0) +4989 more potentially affected by CVE-2026-44727 via jupyter-server (>=0.0.5 <=2.1.0)

jupyter-server PYPI version =0.0.5, =0.1.0, =1.0.3, =0.1.8, =0.1.0, =1.0.0, =0.0.1, =0.1.3, =0.1.3, =0.1.4 and more Source cves: CVE-2026-44727 Source advisory: OSV:PYSEC-2026-366...

9.3CVSS5.7AI score0.00227EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

h2o-notebook (>=0.3.0 <=0.4.1) potentially affected by CVE-2026-44181 via jupyter-enterprise-gateway (=3.2.2)

jupyter-enterprise-gateway PYPI version =3.2.2 is affected by a known vulnerability. The following packages have a transitive dependency on jupyter-enterprise-gateway and may be impacted: - h2o-notebook =0.3.0, =0.4.1 Source cves: CVE-2026-44181 Source advisory: OSV:PYSEC-2026-364...

5.7AI score0.0086EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

h2o-notebook (>=0.3.0 <=0.4.1) potentially affected by CVE-2026-44182 via jupyter-enterprise-gateway (=3.2.2)

jupyter-enterprise-gateway PYPI version =3.2.2 is affected by a known vulnerability. The following packages have a transitive dependency on jupyter-enterprise-gateway and may be impacted: - h2o-notebook =0.3.0, =0.4.1 Source cves: CVE-2026-44182 Source advisory: OSV:PYSEC-2026-362...

5.7AI score0.00062EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

archivebox (>=0.9.30rc81 <=0.9.35rc15), beapro-state-machine (>=0.1.0 <=0.1.4) +32 more potentially affected by CVE-2026-47103 via python-statemachine (>=3.0.0 <=3.1.2)

python-statemachine PYPI version =3.0.0, =0.9.30rc81, =0.1.0, =0.0.1, =1.43.0, =0.1.0, =0.1.2, =1.0.0, =0.2.1, =0.1.4, =1.0.0, =3.4.2, =1.3.0, =0.15.2, =0.31.0 and more Source cves: CVE-2026-47103 Source advisory: OSV:PYSEC-2026-506...

9.8CVSS5.7AI score0.00801EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

h2o-notebook (>=0.3.0 <=0.4.1) potentially affected by CVE-2026-44180 via jupyter-enterprise-gateway (=3.2.2)

jupyter-enterprise-gateway PYPI version =3.2.2 is affected by a known vulnerability. The following packages have a transitive dependency on jupyter-enterprise-gateway and may be impacted: - h2o-notebook =0.3.0, =0.4.1 Source cves: CVE-2026-44180 Source advisory: OSV:PYSEC-2026-363...

5.7AI score0.00106EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

01os (>=0.0.5 <=0.0.13), airbyte-source-azure-blob-storage (>=0.3.3 <=0.6.12) +94 more potentially affected by CVE-2025-64712 via unstructured (>=0.10.10 <=0.18.15)

unstructured PYPI version =0.10.10, =0.0.5, =0.3.3, =0.3.6, =0.0.8, =0.1.5, =0.2.0, =4.5.1, =1.0.0, =0.0.1, =0.1.6, =0.2.2, =0.1.0, =0.1.16 - biorxivist =0.2.1 and more Source cves: CVE-2025-64712 Source advisory: OSV:PYSEC-2026-558...

9.8CVSS7.5AI score0.00616EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

fluoriclogppka (>=0.1.0 <=0.2.7), h2o-wave-ml (>=0.3.0 <=0.5.0) +3 more potentially affected by CVE-2024-5986 via h2o (>=3.18.0.8 <=3.44.0.3)

h2o PYPI version =3.18.0.8, =0.1.0, =0.3.0, =0.4.5, =0.0.1, =0.0.102 - tsanalysis =0.1.0 Source cves: CVE-2024-5986 Source advisory: OSV:PYSEC-2026-353...

9.1CVSS7.2AI score0.00629EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

agentiq-semantic-kernel (>=1.0.0 <=1.1.0a20250428), agixt (>=1.1.76b0 <=1.3.71) +9 more potentially affected by CVE-2026-25592 via semantic-kernel (>=0.2.9.dev0 <=1.35.3)

semantic-kernel PYPI version =0.2.9.dev0, =1.0.0, =1.1.76b0, =1.1.0, =0.1.1, =0.1.0, =0.3.0, =1.2.0, =0.2.0, =0.0.1, =1.0.0, =1.0.9 Source cves: CVE-2026-25592 Source advisory: OSV:PYSEC-2026-531...

9.9CVSS5.7AI score0.0195EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

a2 (>=0.1.0 <=0.3.17), abadpour (>=6.13.1 <=7.24.1) +952 more potentially affected by CVE-2026-2635 via mlflow (>=0.8.2 <=3.6.0rc0)

mlflow PYPI version =0.8.2, =0.1.0, =6.13.1, =9.273.1, =1.1.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.0.5, =1.0.0, =0.1.0, =1.1.1 - ai-helpers-pytorch-utils =0.1.0a1 - ailine-core =0.5.5 and more Source cves: CVE-2026-2635 Source advisory: OSV:PYSEC-2026-421...

9.8CVSS5.7AI score0.00968EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

coati-payroll (>=1.0.1 <=1.10.0), now-lms (>=1.0.3 <=1.2.3) +1 more potentially affected by CVE-2026-27641 via flask-reuploaded (>=1.2.0 <=1.4.0)

flask-reuploaded PYPI version =1.2.0, =1.0.1, =1.0.3, =4.6.1, =5.0.0 Source cves: CVE-2026-27641 Source advisory: OSV:PYSEC-2026-341...

9.8CVSS5.7AI score0.01046EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

hubzoid (>=0.2.2 <=0.6.0), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by CVE-2026-44551 via open-webui (>=0.6.0 <=0.8.8)

open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: CVE-2026-44551 Source advisory: OSV:PYSEC-2026-435...

9.1CVSS7.2AI score0.01461EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

aait (>=1.0.4 <=1.0.5), adess (=1.0.0) +245 more potentially affected by CVE-2026-31235 via imgaug (>=0.2.5 <=0.4.0)

imgaug PYPI version =0.2.5, =1.0.4, =0.1.0, =0.10.0, =0.0.3.20, =0.1.0, =1.3.0, =0.5.0, =0.2.3, =0.3.2, =0.7.0.dev134, =0.1.4, =0.1.5 - arcoocr =1.0.1 - atlalign =0.6.2 - audio-snippets =0.0.1 and more Source cves: CVE-2026-31235 Source advisory: OSV:PYSEC-2026-356...

9.8CVSS5.7AI score0.00472EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

1claw-crewai-tools (=0.1.0), 4dpocket (>=0.1.3 <=0.1.4) +1555 more potentially affected by CVE-2026-45829 via chromadb (>=1.0.0 <=1.5.9)

chromadb PYPI version =1.0.0, =0.1.3, =0.1.0, =0.1.0, =1.0.0, =0.1.0, =0.2.0, =0.6.4, =0.0.4, =0.1.0, =3.0.1 and more Source cves: CVE-2026-45829 Source advisory: OSV:PYSEC-2026-311...

10CVSS5.7AI score0.12387EPSS
Exploits2
vulnersOsv
vulnersOsv
added 2 days ago1 views

artificienlib (>=0.1.1 <=0.1.6), fed-rf-mk (>=0.0.5 <=1.0.0) potentially affected by CVE-2026-31220 via syft (>=0.2.9 <=0.9.5)

syft PYPI version =0.2.9, =0.1.1, =0.0.5, =1.0.0 Source cves: CVE-2026-31220 Source advisory: OSV:PYSEC-2026-546...

9.8CVSS5.7AI score0.00631EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

babelon (>=0.2.1 <=0.3.3), curategpt (>=0.2.2 <=0.2.4) +13 more potentially affected by CVE-2026-31236 via llm (>=0.12.0 <=0.26.0)

llm PYPI version =0.12.0, =0.2.1, =0.2.2, =0.1.0, =0.1.0a0, =0.9.0, =11.0.0rc1, =0.3.6, =0.1.0, =0.7.0, =2.0.0, =2.5.0 Source cves: CVE-2026-31236 Source advisory: OSV:PYSEC-2026-400...

9.8CVSS5.7AI score0.00327EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

lightrft (=0.1.0), rl-square (=0.0.1.post1) potentially affected by CVE-2026-7304 via sglang (>=0.4.5 <=0.4.6.post5)

sglang PYPI version =0.4.5, =0.4.6.post5 is affected by a known vulnerability. The following packages have a transitive dependency on sglang and may be impacted: - lightrft =0.1.0 - rl-square =0.0.1.post1 Source cves: CVE-2026-7304 Source advisory: OSV:PYSEC-2026-535...

9.8CVSS5.7AI score0.00585EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

ebes (>=0.0.0 <=0.0.3), helical (>=0.0.1a8 <=0.0.1a9) +2 more potentially affected by CVE-2026-31239 via mamba-ssm (>=1.0.1 <=2.2.5)

mamba-ssm PYPI version =1.0.1, =0.0.0, =0.0.1a8, =1.0.0, =1.2.0 - ml-trainer-sdk =0.1.0 Source cves: CVE-2026-31239 Source advisory: OSV:PYSEC-2026-406...

9.8CVSS5.7AI score0.00409EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

apna-experiment-sdk (>=0.1.0 <=0.4.10), askui (>=0.22.12 <=0.35.0) +39 more potentially affected by CVE-2026-31072 via apscheduler (>=4.0.0a2 <=4.0.0a6)

apscheduler PYPI version =4.0.0a2, =0.1.0, =0.22.12, =1.0.1, =3.8.0, =1.3.0, =3.0.0a0, =0.1.5, =2.0.5, =0.15.1, =0.0.3, =0.1.0rc0, =2.0.0, =8.4.0, =8.7.0 and more Source cves: CVE-2026-31072 Source advisory: OSV:PYSEC-2026-282...

9.8CVSS5.7AI score0.0081EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

aurora-cycler-manager (>=0.10.0 <=0.11.4), fusion-tools (>=3.6.19 <=3.6.90) +9 more potentially affected by CVE-2026-38360 via dash-uploader (>=0.6.0 <=0.7.0a2)

dash-uploader PYPI version =0.6.0, =0.10.0, =3.6.19, =0.0.11, =0.0.30, =0.2.4b0, =0.0.50.0, =0.1.7.3, =2.0.1, =0.2.0, =0.4.1 Source cves: CVE-2026-38360 Source advisory: OSV:PYSEC-2026-320...

9.8CVSS5.7AI score0.05982EPSS
Exploits4
vulnersOsv
vulnersOsv
added 2 days ago1 views

a2 (>=0.1.0 <=0.3.17), abnativ (>=1.1.0 <=1.2.9) +356 more potentially affected by CVE-2026-0545 via mlflow (>=0.8.2 <=3.10.1)

mlflow PYPI version =0.8.2, =0.1.0, =1.1.0, =0.0.5, =0.1.0, =0.1.0, =1.7.0, =1.7.0, =1.8.0, =1.7.0, =1.7.0, =0.1.1, =0.1.5 - anovos =1.1.0 and more Source cves: CVE-2026-0545 Source advisory: OSV:PYSEC-2026-419...

9.8CVSS5.7AI score0.04392EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

airalogy-engine (=0.0.2) potentially affected by CVE-2026-46695 via boxlite (=0.8.2)

boxlite PYPI version =0.8.2 is affected by a known vulnerability. The following packages have a transitive dependency on boxlite and may be impacted: - airalogy-engine =0.0.2 Source cves: CVE-2026-46695 Source advisory: OSV:PYSEC-2026-299...

10CVSS5.7AI score0.00289EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

airalogy-engine (=0.0.2) potentially affected by CVE-2026-46703 via boxlite (=0.8.2)

boxlite PYPI version =0.8.2 is affected by a known vulnerability. The following packages have a transitive dependency on boxlite and may be impacted: - airalogy-engine =0.0.2 Source cves: CVE-2026-46703 Source advisory: OSV:PYSEC-2026-298...

9.6CVSS5.7AI score0.00482EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

apache-airflow-providers-amazon (>=9.7.0 <=9.8.0rc1), arrow-pd-parser (>=1.0.0 <=1.0.4) +43 more potentially affected by CVE-2026-8838 via redshift-connector (>=2.0.888 <=2.1.13)

redshift-connector PYPI version =2.0.888, =9.7.0, =1.0.0, =0.1.1, =2.0.0, =0.1.7, =0.31.6, =0.1.17, =2.3.0.dev3, =1.0.0a2, =0.4.0, =0.0.1, =0.3.64, =6.1.2, =0.5.2, =1.5.0, =1.9.1 and more Source cves: CVE-2026-8838 Source advisory: OSV:PYSEC-2026-521...

9.8CVSS5.7AI score0.00808EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

airflow-balancer (>=0.7.0 <=0.7.6), airflow-clickhouse-plug (=1.6.2) +39 more potentially affected by CVE-2025-57735 via apache-airflow (>=3.0.0 <=3.1.8)

apache-airflow PYPI version =3.0.0, =0.7.0, =1.5.0, =0.6.1, =1.10.7, =0.6.0, =0.1.0, =1.4.3, =0.2.0, =1.2.10, =0.1.1, =3.0.0, =1.6.0, =1.5.3, =1.25.0, =1.28.0rc1 and more Source cves: CVE-2025-57735 Source advisory: OSV:PYSEC-2026-269...

9.1CVSS5.7AI score0.00667EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

01os (>=0.0.1 <=0.0.14), 0xpwn (=0.1.1) +756 more potentially affected by CVE-2026-35030 via litellm (>=0.1.400 <=1.82.6)

litellm PYPI version =0.1.400, =0.0.1, =0.0.1a0, =0.3.5, =0.7.3, =0.1.0, =0.4.0, =0.8.1, =0.1.0, =0.1.39, =0.2.1, =0.2.1.10102025 - agent-memory-server =0.15.0 - agent-opt =0.0.1 and more Source cves: CVE-2026-35030 Source advisory: OSV:PYSEC-2026-390...

9.4CVSS5.7AI score0.0049EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

click-clack (>=0.1.0 <=0.2.1), dr-widget (>=0.1.2 <=0.1.3) +7 more potentially affected by CVE-2025-39987 +1 more via marimo (>=0.10.19 <=0.21.1)

marimo PYPI version =0.10.19, =0.1.0, =0.1.2, =1.2.7, =2025.8.0, =0.1.1.dev1736307293, =0.1.1.dev1742453945 Source cves: CVE-2025-39987, CVE-2026-39987 Source advisory: OSV:PYSEC-2026-407...

9.8CVSS5.7AI score0.95645EPSS
Exploits11
vulnersOsv
vulnersOsv
added 2 days ago1 views

ai-safety-engine (=0.1.0) potentially affected by CVE-2026-30625 via upsonic (=0.60.0a1754435135)

upsonic PYPI version =0.60.0a1754435135 is affected by a known vulnerability. The following packages have a transitive dependency on upsonic and may be impacted: - ai-safety-engine =0.1.0 Source cves: CVE-2026-30625 Source advisory: OSV:PYSEC-2026-559...

9.8CVSS6AI score0.00974EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

attack-executor (>=0.2.1 <=0.2.8), attackmate (>=0.0.0 <=0.6.0) +11 more potentially affected by CVE-2026-5463 via pymetasploit3 (>=1.0.5 <=1.0.6)

pymetasploit3 PYPI version =1.0.5, =0.2.1, =0.0.0, =0.4.84, =0.0.8, =1.0.0, =1.0.0, =0.0.0, =3.7.0, =0.1.0, =0.1.0, =0.1.2 - raven-vapt =0.1.0 - vulnheist =0.0.1 Source cves: CVE-2026-5463 Source advisory: OSV:PYSEC-2026-500...

9.8CVSS5.7AI score0.01923EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

agentic-blocks (>=0.1.36 <=0.1.37), aiqtoolkit-agno (>=1.1.0 <=1.3.1) +9 more potentially affected by CVE-2026-35002 via agno (>=1.2.16 <=2.0.9)

agno PYPI version =1.2.16, =0.1.36, =1.1.0, =0.8.0, =0.1.0, =1.3.4, =0.1.0.post1, =1.1.0a20251020, =1.7.0a20260513 - synvya-sdk =0.2.12 Source cves: CVE-2026-35002 Source advisory: OSV:PYSEC-2026-256...

9.8CVSS5.7AI score0.00852EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

aad-fastapi (>=1.0.0 <=1.1.2), aad-fastapi-dl37 (>=1.0.0 <=1.0.3) +283 more potentially affected by CVE-2026-27962 via authlib (>=0.10.0 <=1.6.8)

authlib PYPI version =0.10.0, =1.0.0, =1.0.0, =0.0.1, =1.0.2, =1.0.2, =1.2.0a20250730, =1.1.0, =1.2.0a20250730, =0.4.0, =0.1.0, =0.5.0, =0.1.0a1, =1.2.0, =1.2.0a20250730, =1.2.0a20250730, =1.2.0rc4 and more Source cves: CVE-2026-27962 Source advisory: OSV:PYSEC-2026-287...

9.1CVSS7.2AI score0.00548EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

0xpwn (=0.1.1), a2a-acl (>=0.0.14 <=0.0.15) +265 more potentially affected by CVE-2026-42208 via litellm (>=1.81.16 <=1.83.4)

litellm PYPI version =1.81.16, =0.0.14, =0.0.14, =0.0.1a0, =0.6.0, =0.7.3, =0.1.46, =0.25.4a2, =0.1.0, =0.1.0, =0.1.0, =0.1.14.13, =0.0.0.post0, =2.4.65 and more Source cves: CVE-2026-42208 Source advisory: OSV:PYSEC-2026-391...

9.8CVSS5.7AI score0.84518EPSS
Exploits7
vulnersOsv
vulnersOsv
added 2 days ago1 views

lightrft (=0.1.0), rl-square (=0.0.1.post1) potentially affected by CVE-2026-3059 via sglang (>=0.4.5 <=0.4.6.post5)

sglang PYPI version =0.4.5, =0.4.6.post5 is affected by a known vulnerability. The following packages have a transitive dependency on sglang and may be impacted: - lightrft =0.1.0 - rl-square =0.0.1.post1 Source cves: CVE-2026-3059 Source advisory: OSV:PYSEC-2026-539...

9.8CVSS6.9AI score0.01534EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

dyad (=0.1.1), dyad-app (>=0.1.0 <=0.1.2) potentially affected by CVE-2026-33057 via mesop (=1.0.0rc1)

mesop PYPI version =1.0.0rc1 is affected by a known vulnerability. The following packages have a transitive dependency on mesop and may be impacted: - dyad =0.1.1 - dyad-app =0.1.0, =0.1.2 Source cves: CVE-2026-33057 Source advisory: OSV:PYSEC-2026-412...

9.8CVSS5.7AI score0.05289EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2 days ago1 views

aa-rag (=0.4.3), acex (>=3.0.0 <=5.28.0) +825 more potentially affected by CVE-2026-32871 via fastmcp (>=0.1.0 <=3.1.1)

fastmcp PYPI version =0.1.0, =3.0.0, =0.2.0, =0.1.0, =0.1.7, =2.1.7, =0.1.0, =1.0.0, =0.4.6, =0.1.0, =1.8.0, =0.1.1, =0.1.5 and more Source cves: CVE-2026-32871 Source advisory: OSV:PYSEC-2026-338...

10CVSS5.7AI score0.00988EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

a2 (>=0.1.0 <=0.3.17), abadpour (>=6.13.1 <=7.24.1) +952 more potentially affected by CVE-2025-15036 via mlflow (>=0.8.2 <=3.9.0)

mlflow PYPI version =0.8.2, =0.1.0, =6.13.1, =9.273.1, =1.1.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.0.5, =1.0.0, =0.1.0, =1.1.1 - ai-helpers-pytorch-utils =0.1.0a1 - ailine-core =0.5.5 and more Source cves: CVE-2025-15036 Source advisory: OSV:PYSEC-2026-425...

10CVSS5.7AI score0.00587EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

a2 (>=0.1.0 <=0.3.17), abadpour (>=6.13.1 <=7.24.1) +952 more potentially affected by CVE-2026-0596 via mlflow (>=0.8.2 <=3.8.1)

mlflow PYPI version =0.8.2, =0.1.0, =6.13.1, =9.273.1, =1.1.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.0.5, =1.0.0, =0.1.0, =1.1.1 - ai-helpers-pytorch-utils =0.1.0a1 - ailine-core =0.5.5 and more Source cves: CVE-2026-0596 Source advisory: OSV:PYSEC-2026-424...

9.6CVSS5.7AI score0.01328EPSS
Exploits2
vulnersOsv
vulnersOsv
added 2 days ago1 views

a2 (>=0.1.0 <=0.3.17), abadpour (>=6.13.1 <=7.24.1) +952 more potentially affected by CVE-2025-15379 via mlflow (>=0.8.2 <=3.6.0rc0)

mlflow PYPI version =0.8.2, =0.1.0, =6.13.1, =9.273.1, =1.1.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.0.5, =1.0.0, =0.1.0, =1.1.1 - ai-helpers-pytorch-utils =0.1.0a1 - ailine-core =0.5.5 and more Source cves: CVE-2025-15379 Source advisory: OSV:PYSEC-2026-423...

10CVSS5.7AI score0.01994EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

abi-ds-utils (=1.0.1), acceldata-o2a (=1.0.0) +134 more potentially affected by CVE-2023-22884 via apache-airflow (>=1.8.2 <=2.5.0)

apache-airflow PYPI version =1.8.2, =0.8.44.4, =1.4.0.3.post4, =1.4.0.3.post3, =0.1.0rc3, =0.1.0, =0.2.9b1, =0.4.0, =0.1.0a1, =0.6.0, =0.1.1, =0.1.1, =1.10.6 - airflow-cyberark-secrets-backend =0.1.0 and more Source cves: CVE-2023-22884 Source advisory: OSV:PYSEC-2026-268...

9.8CVSS7.2AI score0.11082EPSS
Exploits2
vulnersOsv
vulnersOsv
added 2 days ago1 views

fluoriclogppka (>=0.1.0 <=0.2.7), h2o-wave-ml (>=0.3.0 <=0.5.0) +3 more potentially affected by CVE-2023-6569 via h2o (>=3.18.0.8 <=3.44.0.3)

h2o PYPI version =3.18.0.8, =0.1.0, =0.3.0, =0.4.5, =0.0.1, =0.0.102 - tsanalysis =0.1.0 Source cves: CVE-2023-6569 Source advisory: OSV:PYSEC-2026-350...

9.3CVSS7.2AI score0.00715EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

dyad (=0.1.1), dyad-app (>=0.1.0 <=0.1.2) potentially affected by CVE-2026-33054 via mesop (=1.0.0rc1)

mesop PYPI version =1.0.0rc1 is affected by a known vulnerability. The following packages have a transitive dependency on mesop and may be impacted: - dyad =0.1.1 - dyad-app =0.1.0, =0.1.2 Source cves: CVE-2026-33054 Source advisory: OSV:PYSEC-2026-411...

10CVSS5.7AI score0.00713EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

lightrft (=0.1.0), rl-square (=0.0.1.post1) potentially affected by CVE-2026-3060 via sglang (>=0.4.5 <=0.4.6.post5)

sglang PYPI version =0.4.5, =0.4.6.post5 is affected by a known vulnerability. The following packages have a transitive dependency on sglang and may be impacted: - lightrft =0.1.0 - rl-square =0.0.1.post1 Source cves: CVE-2026-3060 Source advisory: OSV:PYSEC-2026-537...

9.8CVSS6.9AI score0.01158EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

a2 (>=0.1.0 <=0.3.17), abnativ (>=1.1.0 <=1.2.9) +339 more potentially affected by CVE-2023-6975 via mlflow (>=0.8.2 <=2.9.1)

mlflow PYPI version =0.8.2, =0.1.0, =1.1.0, =0.0.5, =0.1.0, =0.1.0, =1.7.0, =1.7.0, =1.8.0, =1.7.0, =1.7.0, =0.1.1, =0.1.5 - anovos =1.1.0 and more Source cves: CVE-2023-6975 Source advisory: OSV:PYSEC-2026-422...

9.8CVSS5.7AI score0.02013EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

a2 (>=0.1.0 <=0.3.17), abnativ (>=1.1.0 <=1.2.9) +339 more potentially affected by CVE-2023-6974 via mlflow (>=0.8.2 <=2.9.1)

mlflow PYPI version =0.8.2, =0.1.0, =1.1.0, =0.0.5, =0.1.0, =0.1.0, =1.7.0, =1.7.0, =1.8.0, =1.7.0, =1.7.0, =0.1.1, =0.1.5 - anovos =1.1.0 and more Source cves: CVE-2023-6974 Source advisory: OSV:PYSEC-2026-416...

9.8CVSS5.7AI score0.01507EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2 days ago1 views

croparray (>=0.1.0 <=0.1.1) potentially affected by CVE-2026-32633 via glances (=3.2.7)

glances PYPI version =3.2.7 is affected by a known vulnerability. The following packages have a transitive dependency on glances and may be impacted: - croparray =0.1.0, =0.1.1 Source cves: CVE-2026-32633 Source advisory: OSV:PYSEC-2026-343...

9.1CVSS5.7AI score0.00472EPSS
Exploits1
Total number of security vulnerabilities26517