Python Software Foundation
Security Scorecard
Score
90B
Total CVEs
18
Patch Rate
83%
15 patched
Avg Response
-
days to patch
Critical Gaps
0
exploitable, no detection
Severity Breakdown
Critical1
High9
Medium7
Low0
Patch Status
Patched15 (83%)
Partial/Workaround0 (0%)
Unpatched3 (17%)
CVEs (19)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2026-24123 | BentoML Path Traversal Vulnerability | High | 7.4 | - | Patched |
| CVE-2026-24049 | Wheel Unpacking Vulnerability | High | 7.1 | - | Patched |
| CVE-2026-22702 | CVE-2026-22702 | Medium | 4.5 | - | Patched |
| CVE-2026-21441 | CVE-2026-21441 | High | 7.5 | - | Patched |
| CVE-2025-66471 | urllib3 HTTP Client Library Compression Bug | High | 7.5 | - | Patched |
| CVE-2025-13837 | Plistlib Module OOM and DoS Vulnerability | Medium | 5.5 | - | Patched |
| CVE-2025-13836 | HTTP Client Buffer Overflow Vulnerability | Critical | 9.1 | - | Patched |
| CVE-2025-12638 | - | High | 8.0 | 15d | Unpatched |
| CVE-2025-61911 | - | Medium | 6.5 | - | Patched |
| CVE-2025-61912 | - | Medium | 5.3 | - | Patched |