Skip to content
Tools / ray / Security

Security Deep Dive

ray

Security posture and CVE patch evidence from tracked releases.

Back to Tool

1 actively-exploited dependency CVE affects ray-2.55.1.

KEV-listed CVEs are confirmed exploited in the wild — patch urgently.

✗ Signed ✗ SLSA ✓ SBOM ✓ Security policy Monthly cadence · 20d median Active maintainer

Trust Signals — 4 of 9 Present

Evidence already collected from releases and repository metadata.

4/9 Present
Signed releases Absent
Latest release artifact signature None
Last verified: 14d ago
SLSA provenance Absent
Attestation predicate level Latest release
Last verified: 14d ago
SBOM published Present
GitHub SBOM API Latest release
Last verified: 28d ago
SECURITY.md Present
GitHub repository metadata Repository policy
Checked: 22d ago
Release cadence: monthly Present
20d median over recent releases Release history
Latest release: 1mo ago
Maintainer active Present
Recent commit activity Repository
Last commit: 6d ago
Checksums (SHA256SUMS) Not active yet
SHA256SUMS or equivalent Release asset
Latest release: 1mo ago
GitHub Actions attestation Not active yet
actions/attest-build-provenance Workflow file
Latest release: 1mo ago
Signing assets Not active yet
.sig, .crt, cosign.pub, or similar Release asset
Latest release: 1mo ago
4.0/10 Security Score
5.7/10 Scorecard
Pending CVE Patch Speed
Open CVEs Open CVEs detected for latest version.

Security Score

A composite score aggregating Scorecard performance, CVE patch history, OpenSSF badge tier, and dependency vulnerability exposure. Score ≥ 7.0 is healthy; < 4.0 warrants attention.

epss

0.25 / 0.5

No EPSS data

freshness

1.00 / 1.0

5d stale

scorecard

2.28 / 4.0

Score 5.7/10

cve health

0.00 / 2.5

Open CVEs detected

patch speed

0.50 / 0.5

⚠ Estimated — no CVE patch history

kev exposure

1.50 / 1.5

No KEV exposure

supply chain risk

-1.50 / 10.0

Risk 100.0/100

Score breakdown

schema v2

Vulnerability posture

vulnerability posture

0.0

25%

direct cves: open cve scan: available

Release responsiveness

release responsiveness

10.0

5%

patch speed days: no_history

Dependency exposure

dependency exposure

0.0

10%

supply chain risk: 100.0 transitive cves: 85c/429h

Provenance trust

provenance trust

5.7

40%

scorecard score: 5.7 openssf badge: none

Maintainer health

maintainer health

10.0

10%

activity freshness: 5d

Operational risk

operational risk

8.5

10%

kev exposure: detected epss max: none
How is this calculated?

The six dimensions group the legacy score signals into weighted categories: direct vulnerability status, patch responsiveness, dependency exposure, provenance checks, maintainer activity, and exploitability risk. The flat component values above remain available for compatibility.

Supply Chain Risk

Risk 100.0/100
85 Transitive critical CVEs
1 KEV-transitive CVEs
27% Dependency freshness

Scorecard

Scorecard 5.7/10

OpenSSF Scorecard evaluates supply-chain security practices automatically. Score ≥ 6 is passing; ≥ 8 is excellent.

Check Score Reason
Packaging -1 packaging workflow not detected
Security-Policy 3 security policy file detected
Code-Review 9 Found 29/30 approved changesets -- score normalized to 9
Maintained 10 30 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10
Dangerous-Workflow 10 no dangerous workflow patterns detected
Token-Permissions 0 detected GitHub workflow tokens with excessive permissions
CII-Best-Practices 5 badge detected: Passing
License 10 license file detected
Signed-Releases -1 no releases found
Binary-Artifacts 8 binaries present in source code
Fuzzing 0 project is not fuzzed
SAST 0 SAST tool is not run on all commits -- score normalized to 0
Branch-Protection 8 branch protection is not maximal on development and all release branches
Pinned-Dependencies 0 dependency not pinned by hash detected -- score normalized to 0

Dependency Vulnerabilities

4357 dependencies scanned View full dependency list →

Scanning the SBOM (Software Bill of Materials) of the latest release for known vulnerabilities in transitive dependencies.

Critical

85

High

415

Medium

0

Low

0

Unknown

0

1 dependency vulnerabilities are in KEV.

CISA confirmed these vulnerabilities are actively exploited. Treat as critical priority.

Still affecting latest (141) All (500)
Critical 85 High 415
CVE Severity KEV Dependency Affected version Cleared in release
CVE-2009-5042 critical docutils
CVE-2012-0805 critical sqlalchemy
CVE-2014-3007 critical pillow
CVE-2016-4009 critical pillow
CVE-2017-18342 critical pyyaml
CVE-2018-20060 critical urllib3
CVE-2018-7575 critical tensorflow
CVE-2018-7750 critical paramiko
CVE-2019-20477 critical pyyaml
CVE-2019-6446 critical numpy
CVE-2019-7164 critical sqlalchemy
CVE-2019-7548 critical sqlalchemy
CVE-2020-11538 critical pillow
CVE-2020-13092 critical scikit-learn
CVE-2020-14343 critical pyyaml
CVE-2020-15212 critical tensorflow
CVE-2020-15214 critical tensorflow
CVE-2020-1747 critical pyyaml
CVE-2020-5310 critical pillow
CVE-2020-5311 critical pillow
CVE-2020-5312 critical pillow
CVE-2021-25289 critical pillow
CVE-2021-34552 critical pillow
CVE-2021-41208 critical tensorflow
CVE-2021-41945 critical httpx
CVE-2021-42343 critical distributed
CVE-2021-43831 critical gradio
CVE-2022-0845 critical pytorch-lightning
CVE-2022-22817 critical pillow
CVE-2022-24439 critical gitpython
CVE-2022-45907 critical torch
CVE-2023-1177 critical mlflow
CVE-2023-25668 critical tensorflow
CVE-2023-2780 critical mlflow
CVE-2023-3765 critical mlflow
CVE-2023-39631 critical numexpr 2.8.4
CVE-2023-40267 critical gitpython
CVE-2023-47248 critical pyarrow
CVE-2023-48022 critical ray
CVE-2023-50447 critical pillow
CVE-2023-6014 critical mlflow
CVE-2023-6015 critical mlflow
CVE-2023-6018 critical mlflow
CVE-2023-6019 critical ray
CVE-2023-6020 critical ray
CVE-2023-6021 critical ray
CVE-2023-6572 critical gradio 3.50.2
CVE-2023-6730 critical transformers
CVE-2023-6831 critical mlflow
CVE-2023-6974 critical mlflow
CVE-2023-6975 critical mlflow
CVE-2024-0520 critical mlflow
CVE-2024-11041 critical vllm
CVE-2024-1728 critical gradio 3.50.2
CVE-2024-2195 critical aim 3.23.0
CVE-2024-27132 critical mlflow
CVE-2024-27133 critical mlflow
CVE-2024-3573 critical mlflow
CVE-2024-36039 critical pymysql
CVE-2024-48063 critical torch
CVE-2024-5452 critical lightning
CVE-2024-5980 critical lightning
CVE-2024-8019 critical pytorch-lightning 1.8.6
CVE-2024-8769 critical aim 3.23.0
CVE-2024-9052 critical vllm
CVE-2024-9053 critical vllm
CVE-2025-14009 critical nltk 3.8.1
CVE-2025-15036 critical mlflow 3.1.4
CVE-2025-15379 critical mlflow 3.1.4
CVE-2025-23042 critical gradio 3.50.2
CVE-2025-29783 critical vllm
CVE-2025-32434 critical torch
CVE-2025-32444 critical vllm
CVE-2025-34351 critical ray
CVE-2025-43859 critical h11
CVE-2025-47277 critical vllm
CVE-2025-62593 critical ray
CVE-2025-7783 critical form-data 3.0.1
CVE-2026-0545 critical mlflow 3.1.4
CVE-2026-22778 critical vllm
CVE-2026-2635 critical mlflow 3.1.4
CVE-2026-44484 critical pytorch-lightning
GHSA-83fm-w79m-64r5 critical mlflow
GHSA-ggpf-24jw-3fcw critical vllm
GHSA-h6gw-r52c-724r critical tensorflow
CVE-2008-0299 high paramiko
CVE-2012-2374 high tornado
CVE-2013-1629 high pip
CVE-2013-4314 high pyopenssl
CVE-2013-5123 high pip
CVE-2014-1402 high jinja2
CVE-2014-1858 high numpy
CVE-2014-1859 high numpy
CVE-2014-1932 high pillow
CVE-2014-3589 high pillow
CVE-2014-3598 high pillow
CVE-2014-9601 high pillow
CVE-2014-9720 high tornado
CVE-2015-5237 high protobuf
CVE-2016-0775 high pillow
CVE-2016-10075 high tqdm
CVE-2016-10745 high jinja2
CVE-2016-2533 high pillow
CVE-2016-3076 high pillow
CVE-2016-9190 high pillow
CVE-2016-9243 high cryptography
CVE-2017-12852 high numpy
CVE-2018-1000518 high websockets
CVE-2018-1000805 high paramiko
CVE-2018-1000807 high pyopenssl
CVE-2018-1000808 high pyopenssl
CVE-2018-10055 high tensorflow
CVE-2018-10903 high cryptography
CVE-2018-18074 high requests
CVE-2018-21233 high tensorflow
CVE-2018-7576 high tensorflow
CVE-2018-7577 high tensorflow
CVE-2018-8825 high tensorflow
CVE-2019-10906 high jinja2
CVE-2019-11324 high urllib3
CVE-2019-12408 high pyarrow
CVE-2019-12410 high pyarrow
CVE-2019-16865 high pillow
CVE-2019-18874 high psutil
CVE-2019-19911 high pillow
CVE-2019-20916 high pip
CVE-2019-9635 high tensorflow
CVE-2019-9843 high com.diffplug.spotless:spotless-maven-plugin
CVE-2020-10177 high pillow
CVE-2020-10378 high pillow
CVE-2020-10379 high pillow
CVE-2020-10994 high pillow
CVE-2020-15193 high tensorflow
CVE-2020-15199 high tensorflow
CVE-2020-15200 high tensorflow
CVE-2020-15202 high tensorflow
CVE-2020-15203 high tensorflow
CVE-2020-15206 high tensorflow
CVE-2020-15208 high tensorflow
CVE-2020-15209 high tensorflow
CVE-2020-15210 high tensorflow
CVE-2020-15265 high tensorflow
CVE-2020-25032 high flask-cors
CVE-2020-25659 high cryptography
CVE-2020-26269 high tensorflow
CVE-2020-28975 high scikit-learn
CVE-2020-35653 high pillow
CVE-2020-35654 high pillow
CVE-2020-36242 high cryptography
CVE-2020-5313 high pillow
CVE-2020-7212 high urllib3
CVE-2021-23437 high pillow
CVE-2021-23727 high celery
CVE-2021-25287 high pillow
CVE-2021-25288 high pillow
CVE-2021-25290 high pillow
CVE-2021-25291 high pillow
CVE-2021-25293 high pillow
CVE-2021-27921 high pillow
CVE-2021-27922 high pillow
CVE-2021-27923 high pillow
CVE-2021-28675 high pillow
CVE-2021-28676 high pillow
CVE-2021-28677 high pillow
CVE-2021-29591 high tensorflow
CVE-2021-32677 high fastapi
CVE-2021-33503 high urllib3
CVE-2021-33880 high websockets
CVE-2021-3572 high pip
CVE-2021-37635 high tensorflow
CVE-2021-37637 high tensorflow
CVE-2021-37638 high tensorflow
CVE-2021-37639 high tensorflow
CVE-2021-37643 high tensorflow
CVE-2021-37647 high tensorflow
CVE-2021-37648 high tensorflow
CVE-2021-37649 high tensorflow
CVE-2021-37650 high tensorflow
CVE-2021-37651 high tensorflow
CVE-2021-37652 high tensorflow
CVE-2021-37654 high tensorflow
CVE-2021-37655 high tensorflow
CVE-2021-37659 high tensorflow
CVE-2021-37663 high tensorflow
CVE-2021-37664 high tensorflow
CVE-2021-37665 high tensorflow
CVE-2021-37666 high tensorflow
CVE-2021-37667 high tensorflow
CVE-2021-37671 high tensorflow
CVE-2021-37676 high tensorflow
CVE-2021-37678 high tensorflow
CVE-2021-37679 high tensorflow
CVE-2021-37681 high tensorflow
CVE-2021-37688 high tensorflow
CVE-2021-37689 high tensorflow
CVE-2021-3803 high nth-check 1.0.2
CVE-2021-4118 high pytorch-lightning
CVE-2021-41201 high tensorflow
CVE-2021-41203 high tensorflow
CVE-2021-41206 high tensorflow
CVE-2021-41210 high tensorflow
CVE-2021-41211 high tensorflow
CVE-2021-41212 high tensorflow
CVE-2021-41214 high tensorflow
CVE-2021-41219 high tensorflow
CVE-2021-41220 high tensorflow
CVE-2021-41221 high tensorflow
CVE-2021-41495 high numpy
CVE-2022-0736 high mlflow
CVE-2022-1941 high protobuf
CVE-2022-21726 high tensorflow
CVE-2022-21727 high tensorflow
CVE-2022-21728 high tensorflow
CVE-2022-21729 high tensorflow
CVE-2022-21730 high tensorflow
CVE-2022-21731 high tensorflow
CVE-2022-21734 high tensorflow
CVE-2022-21735 high tensorflow
CVE-2022-21736 high tensorflow
CVE-2022-21737 high tensorflow
CVE-2022-21738 high tensorflow
CVE-2022-21739 high tensorflow
CVE-2022-21740 high tensorflow
CVE-2022-21741 high tensorflow
CVE-2022-23557 high tensorflow
CVE-2022-23558 high tensorflow
CVE-2022-23559 high tensorflow
CVE-2022-23560 high tensorflow
CVE-2022-23561 high tensorflow
CVE-2022-23562 high tensorflow
CVE-2022-23563 high tensorflow
CVE-2022-23564 high tensorflow
CVE-2022-23565 high tensorflow
CVE-2022-23566 high tensorflow
CVE-2022-23567 high tensorflow
CVE-2022-23568 high tensorflow
CVE-2022-23569 high tensorflow
CVE-2022-23570 high tensorflow
CVE-2022-23571 high tensorflow
CVE-2022-23572 high tensorflow
CVE-2022-23573 high tensorflow
CVE-2022-23574 high tensorflow
CVE-2022-23575 high tensorflow
CVE-2022-23576 high tensorflow
CVE-2022-23577 high tensorflow
CVE-2022-23584 high tensorflow
CVE-2022-23587 high tensorflow
CVE-2022-23591 high tensorflow
CVE-2022-23592 high tensorflow
CVE-2022-23593 high tensorflow
CVE-2022-23594 high tensorflow
CVE-2022-24302 high paramiko
CVE-2022-24303 high pillow
CVE-2022-24770 high gradio
CVE-2022-25881 high http-cache-semantics 4.1.0
CVE-2022-25883 high semver 6.3.0
CVE-2022-29208 high tensorflow
CVE-2022-29216 high tensorflow
CVE-2022-30595 high pillow
CVE-2022-35937 high tensorflow
CVE-2022-35939 high tensorflow
CVE-2022-40898 high wheel
CVE-2022-40899 high future
CVE-2022-41894 high tensorflow
CVE-2022-41900 high tensorflow
CVE-2022-41902 high tensorflow
CVE-2022-45198 high pillow
CVE-2022-45199 high pillow
CVE-2023-0286 high cryptography
CVE-2023-1428 high grpcio
CVE-2023-2356 high mlflow
CVE-2023-25658 high tensorflow
CVE-2023-25659 high tensorflow
CVE-2023-25660 high tensorflow
CVE-2023-25662 high tensorflow
CVE-2023-25663 high tensorflow
CVE-2023-25664 high tensorflow
CVE-2023-25665 high tensorflow
CVE-2023-25666 high tensorflow
CVE-2023-25669 high tensorflow
CVE-2023-25670 high tensorflow
CVE-2023-25671 high tensorflow
CVE-2023-25672 high tensorflow
CVE-2023-25673 high tensorflow
CVE-2023-25674 high tensorflow
CVE-2023-25675 high tensorflow
CVE-2023-25676 high tensorflow
CVE-2023-25801 high tensorflow
CVE-2023-26302 high markdown-it-py
CVE-2023-26303 high markdown-it-py
CVE-2023-27579 high tensorflow
CVE-2023-28859 high redis
CVE-2023-30172 high mlflow
CVE-2023-30798 high starlette
CVE-2023-30861 high flask 2.1.3
CVE-2023-32731 high grpcio
CVE-2023-33953 high grpcio
CVE-2023-33976 high tensorflow
CVE-2023-34233 high snowflake-connector-python
CVE-2023-37920 high certifi
CVE-2023-38325 high cryptography
CVE-2023-4033 high mlflow
CVE-2023-40590 high gitpython
CVE-2023-43472 high mlflow
CVE-2023-43804 high urllib3
CVE-2023-44271 high pillow
CVE-2023-4785 high grpcio
CVE-2023-4863 high KEV pillow
CVE-2023-50782 high cryptography
CVE-2023-51449 high gradio 3.50.2
CVE-2023-6709 high mlflow
CVE-2023-6753 high mlflow
CVE-2023-6909 high mlflow
CVE-2023-6940 high mlflow
CVE-2023-6976 high mlflow
CVE-2023-6977 high mlflow
CVE-2023-7018 high transformers
CVE-2024-0964 high gradio 3.50.2
CVE-2024-10110 high aim 3.23.0
CVE-2024-10569 high gradio
CVE-2024-10624 high gradio
CVE-2024-10648 high gradio
CVE-2024-1135 high gunicorn 20.1.0
CVE-2024-11392 high transformers 4.36.2
CVE-2024-11393 high transformers 4.36.2
CVE-2024-11394 high transformers 4.36.2
CVE-2024-12778 high aim 3.23.0
CVE-2024-1483 high mlflow
CVE-2024-1558 high mlflow
CVE-2024-1560 high mlflow
CVE-2024-1561 high gradio 3.50.2
CVE-2024-1593 high mlflow
CVE-2024-1594 high mlflow
CVE-2024-21536 high http-proxy-middleware 2.0.6
CVE-2024-21538 high cross-spawn 7.0.3
CVE-2024-2206 high gradio 3.50.2
CVE-2024-22190 high gitpython
CVE-2024-22421 high jupyterlab
CVE-2024-23334 high aiohttp
CVE-2024-24762 high fastapi
CVE-2024-24762 high python-multipart 0.0.6
CVE-2024-26130 high cryptography
CVE-2024-27134 high mlflow
CVE-2024-28219 high pillow
CVE-2024-2928 high mlflow
CVE-2024-29415 high ip 2.0.0
CVE-2024-30251 high aiohttp
CVE-2024-31580 high torch
CVE-2024-31583 high torch
CVE-2024-34069 high werkzeug 2.3.8
CVE-2024-34510 high gradio 3.50.2
CVE-2024-35178 high jupyter-server 2.10.0
CVE-2024-35515 high sqlitedict 2.1.0
CVE-2024-37052 high mlflow
CVE-2024-37053 high mlflow
CVE-2024-37054 high mlflow
CVE-2024-37055 high mlflow
CVE-2024-37056 high mlflow
CVE-2024-37057 high mlflow
CVE-2024-37058 high mlflow
CVE-2024-37059 high mlflow 3.1.4
CVE-2024-37060 high mlflow
CVE-2024-37061 high mlflow
CVE-2024-37890 high ws 7.5.9
CVE-2024-3848 high mlflow
CVE-2024-39705 high nltk 3.8.1
CVE-2024-4068 high braces 3.0.2
CVE-2024-4325 high gradio 3.50.2
CVE-2024-43497 high deepspeed
CVE-2024-43805 high jupyterlab
CVE-2024-45296 high path-to-regexp 0.1.7
CVE-2024-45590 high body-parser 1.20.2
CVE-2024-47068 high rollup 2.79.1
CVE-2024-47084 high gradio 3.50.2
CVE-2024-47867 high gradio 3.50.2
CVE-2024-47870 high gradio 3.50.2
CVE-2024-47871 high gradio 3.50.2
CVE-2024-47874 high starlette
CVE-2024-4941 high gradio 3.50.2
CVE-2024-5187 high onnx 1.16.0
CVE-2024-52798 high path-to-regexp 0.1.7
CVE-2024-52804 high tornado
CVE-2024-53899 high virtualenv
CVE-2024-53981 high python-multipart 0.0.6
CVE-2024-6221 high flask-cors 4.0.0
CVE-2024-6827 high gunicorn 20.1.0
CVE-2024-7776 high onnx 1.16.0
CVE-2024-8020 high pytorch-lightning 1.8.6
CVE-2024-8061 high aim 3.23.0
CVE-2024-8768 high vllm
CVE-2024-8859 high mlflow
CVE-2024-8966 high gradio 3.50.2
CVE-2025-0189 high aim 3.23.0
CVE-2025-0190 high aim 3.23.0
CVE-2025-10279 high mlflow 3.1.4
CVE-2025-11200 high mlflow
CVE-2025-11201 high mlflow
CVE-2025-12060 high keras 2.15.0
CVE-2025-12816 high node-forge 1.3.1
CVE-2025-14279 high mlflow 3.1.4
CVE-2025-14287 high mlflow 3.1.4
CVE-2025-15031 high mlflow 3.1.4
CVE-2025-15381 high mlflow 3.1.4
CVE-2025-24357 high vllm
CVE-2025-24793 high snowflake-connector-python
CVE-2025-27152 high axios 0.21.4
CVE-2025-30165 high vllm
CVE-2025-30167 high jupyter-core 5.5.0
CVE-2025-30202 high vllm
CVE-2025-4565 high protobuf
CVE-2025-47287 high tornado
CVE-2025-48379 high pillow
CVE-2025-48956 high vllm
CVE-2025-53000 high nbconvert 6.5.4
CVE-2025-53365 high mcp 1.2.0
CVE-2025-53366 high mcp 1.2.0
CVE-2025-57809 high xgrammar 0.1.19
CVE-2025-59425 high vllm
CVE-2025-6176 high brotli 1.1.0
CVE-2025-62164 high vllm
CVE-2025-62372 high vllm
CVE-2025-6242 high vllm
CVE-2025-62703 high fugue 0.8.7
CVE-2025-62727 high starlette
CVE-2025-66031 high node-forge 1.3.1
CVE-2025-66416 high mcp 1.22.0
CVE-2025-66418 high urllib3 1.26.19
CVE-2025-66448 high vllm
CVE-2025-66471 high urllib3 1.26.19
CVE-2025-67221 high orjson 3.9.15
CVE-2025-69223 high aiohttp
CVE-2025-9141 high vllm
CVE-2025-9906 high keras 2.15.0
CVE-2026-0846 high nltk 3.8.1
CVE-2026-0847 high nltk 3.8.1
CVE-2026-0994 high protobuf 4.25.8
CVE-2026-1260 high sentencepiece 0.1.96
CVE-2026-1462 high keras 2.15.0
CVE-2026-2033 high mlflow 3.1.4
CVE-2026-21226 high azure-core 1.29.5
CVE-2026-21441 high urllib3 1.26.19
CVE-2026-22029 high @remix-run/router 1.0.3
CVE-2026-22807 high vllm
CVE-2026-23745 high tar 6.1.11
CVE-2026-23949 high jaraco-context 5.3.0
CVE-2026-23950 high tar 6.1.11
CVE-2026-24049 high wheel 0.45.1
CVE-2026-24486 high python-multipart 0.0.6
CVE-2026-24779 high vllm
CVE-2026-24842 high tar 6.1.11
CVE-2026-25048 high xgrammar 0.1.19
CVE-2026-25639 high axios 0.21.4
CVE-2026-25990 high pillow 10.4.0
CVE-2026-26007 high cryptography 44.0.3
CVE-2026-26960 high tar 6.1.11
CVE-2026-26996 high minimatch 5.1.6
CVE-2026-27459 high pyopenssl 25.0.0
CVE-2026-27489 high onnx 1.16.0
CVE-2026-27606 high rollup 2.79.1
CVE-2026-27893 high vllm
CVE-2026-27903 high minimatch 5.1.6
CVE-2026-27904 high minimatch 5.1.6
CVE-2026-27932 high joserfc 1.5.0
CVE-2026-28414 high gradio 3.50.2
CVE-2026-28416 high gradio 3.50.2
CVE-2026-28500 high onnx 1.16.0
CVE-2026-29074 high svgo 2.8.0
CVE-2026-29786 high tar 6.1.11
CVE-2026-30922 high pyasn1 0.5.1
CVE-2026-31802 high tar 6.1.11
CVE-2026-31958 high tornado 6.5.4
CVE-2026-32141 high flatted 3.2.7
CVE-2026-32274 high black 22.10.0
CVE-2026-32597 high pyjwt 2.8.0
CVE-2026-32874 high ujson 5.10.0
CVE-2026-32875 high ujson 5.10.0
CVE-2026-33079 high mistune 3.2.0
CVE-2026-33228 high flatted 3.2.7
CVE-2026-33231 high nltk 3.8.1
CVE-2026-33236 high nltk 3.8.1
CVE-2026-33671 high picomatch 2.3.1
CVE-2026-33891 high node-forge 1.3.1
CVE-2026-33894 high node-forge 1.3.1
CVE-2026-33895 high node-forge 1.3.1
CVE-2026-33896 high node-forge 1.3.1
CVE-2026-34445 high onnx 1.16.0
CVE-2026-35397 high jupyter-server 2.10.0
CVE-2026-35536 high tornado 6.5.4
CVE-2026-40110 high jupyter-server 2.10.0
CVE-2026-40171 high jupyterlab 4.5.1
CVE-2026-40192 high pillow 10.4.0
CVE-2026-40934 high jupyter-server 2.10.0
CVE-2026-41066 high lxml 6.0.2
CVE-2026-41486 high ray
CVE-2026-42033 high axios 0.21.4
CVE-2026-42035 high axios 0.21.4
CVE-2026-42043 high axios 0.21.4
CVE-2026-42215 high gitpython 3.1.44
CVE-2026-42266 high jupyterlab 4.5.1
CVE-2026-42284 high gitpython 3.1.44

Showing 500 of 500

Beta — feedback welcome: [email protected]