2,258 CVEs

8 in CISA KEV

PyPI Vulnerabilities

CVE security advisories and vulnerability history for PyPI.

2,258

Total CVEs

Published

8

In CISA KEV

Exploited in the wild

439

Public exploits

With known exploit

6.3

Avg CVSS

2006–2026

Overview

PyPI has 2,258 published CVE records since 2006, of which 8 are in CISA's Known Exploited Vulnerabilities catalog and 439 have a known public exploit. The average CVSS base score across scored CVEs is 6.3.

This page aggregates every publicly disclosed vulnerability (CVE) affecting PyPI products, with severity breakdowns, the most-affected products, the most common weakness types, and the latest disclosures.

Severity and exploitation

How the CVSS severity of PyPI's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical137

High439

Medium537

Low191

954 additional CVEs have no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

8

8 of PyPI's CVEs are confirmed exploited in the wild.

Public exploits

439

439 of PyPI's CVEs have a known public exploit available.

Most affected products

The PyPI products with the most published CVEs.

tensorflow297 CVEs
tensorflow-cpu297 CVEs
tensorflow-gpu297 CVEs
fedora210 CVEs
debian linux192 CVEs
Django120 CVEs
ubuntu linux92 CVEs
airflow80 CVEs

Common weakness types

The CWE weakness categories most often found in PyPI CVEs. Follow any weakness for its full explanation.

CNAs that assign these CVEs

The CVE Numbering Authorities that publish PyPI CVE records.

Disclosure activity by year

How many PyPI CVEs were published each year.

2019

152

2020

234

2021

467

2022

361

2023

290

2024

252

2025

86

2026

2

Latest PyPI CVEs

The most recently disclosed vulnerabilities affecting PyPI.

pyLoad: Arbitrary File Write via Path Traversal in edit_package()
CWE-23
High · CVSS 7.1
EPSS 0.0%2026-03-07
Medium vulnerability · 2026-03-05
CWE-601
Medium · CVSS 5.1
EPSS 0.0%2026-03-05
Medium vulnerability · 2025-12-15
CWE-613
Medium · CVSS 5.4
EPSS 0.0%2025-12-15
Medium vulnerability · 2025-12-15
CWE-287
Medium · CVSS 5.4
EPSS 0.0%2025-12-15
Mayan EDMS authentication redirect
CWE-601
Medium · CVSS 5.3
EPSS 0.1%2025-12-14
Mayan EDMS authentication cross site scripting
CWE-94
Medium · CVSS 5.3
EPSS 0.1%2025-12-14
Langflow <= 1.6.9 CORS Misconfiguration to Token Hijack & RCE
CISA KEV
CWE-346
Critical · CVSS 9.4
EPSS 32.7%2025-12-05
Critical vulnerability · 2025-08-01
CWE-502
Critical · CVSS 9.8
EPSS 7.1%2025-08-01
High vulnerability · 2025-07-29
CWE-319
High · CVSS 7.3
EPSS 0.3%2025-07-29
Cadwyn is vulnerable to an XSS attack through its docs page
CWE-79
High · CVSS 7.6
EPSS 0.2%2025-07-21
Arbitrary File Read through Path Traversal in run-llama/llama_index
CWE-29
High · CVSS 7.5
EPSS 0.4%2025-07-07
Pillow Vulnerable to Write Buffer Overflow on BCn encoding
CWE-122
High · CVSS 7.1
EPSS 0.1%2025-07-01

Track new PyPI CVEs as they are disclosed and get AI-written analysis and remediation guidance.

Monitor PyPI CVEs

Other vendors

Browse vulnerabilities for other tracked vendors.

hp2,526 CVEs netapp2,517 CVEs qualcomm2,477 CVEs Huawei2,355 CVEs Android2,026 CVEs SourceCodester1,968 CVEs intel1,949 CVEs tenda1,923 CVEs

Browse all vendors

Frequently asked questions

Common questions about PyPI vulnerabilities.

How many CVEs does PyPI have?

PyPI has 2,258 published CVE records since 2006, including 88 in the last two years.

How many PyPI CVEs are in CISA KEV?

Yes — 8 of PyPI's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.

Which PyPI products have the most CVEs?

The PyPI products with the most published CVEs are tensorflow, tensorflow-cpu, tensorflow-gpu, fedora, debian linux.

What are the most common weakness types in PyPI CVEs?

PyPI's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-20 (Improper Input Validation), CWE-369 (Divide By Zero), CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')).

Are there public exploits for PyPI vulnerabilities?

Yes — 439 of PyPI's CVEs have a known public exploit.

How many critical PyPI vulnerabilities are there?

PyPI has 137 critical and 439 high-severity CVEs.

What is the average severity of PyPI CVEs?

The average CVSS base score across PyPI's scored CVEs is 6.3.

References

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track PyPI vulnerabilities

Monitor new PyPI vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing