Browse all 4 CVE security advisories affecting Python. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Python serves as a versatile language for web development, automation, and data analysis, powering critical business applications. Historically, vulnerabilities include remote code execution through unsafe deserialization, cross-site scripting from improper input handling, and privilege escalation via library flaws. While generally secure, notable incidents include the 2023 PyTorch supply chain attack and dependency confusion risks. The language's extensive ecosystem and dynamic typing can introduce security challenges if not properly managed. With 4 current CVEs, maintaining updated dependencies and following secure coding practices remain essential for mitigating risks in Python-based systems.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-0994 | Denial of Service in Python Protobuf — ProtobufCWE-674 | 7.5 | - | 2026-01-23 |
| CVE-2012-5578 | Python keyring 安全漏洞 — Python keyring | 6.2 | - | 2019-11-25 |
| CVE-2012-1109 | Python mwlib Library 安全漏洞 — mwlib | 7.5 | - | 2019-11-12 |
| CVE-2019-10160 | Python 信任管理问题漏洞 — pythonCWE-172 | 9.8 | - | 2019-06-07 |
This page lists every published CVE security advisory associated with Python. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.