Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

pypa — Vulnerabilities & Security Advisories 5

Browse all 5 CVE security advisories affecting pypa. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by pypa:pipenvpypa/setuptoolssetuptoolsvirtualenvwheel
CVE IDTitleCVSSSeverityPublished
CVE-2026-24049 wheel Allows Arbitrary File Permission Modification via Path Traversal — wheelCWE-22 7.1 High2026-01-22
CVE-2026-22702 virtualenv Has TOCTOU Vulnerabilities in Directory Creation — virtualenvCWE-59 4.5 Medium2026-01-10
CVE-2025-47273 setuptools has a path traversal vulnerability in PackageIndex.download that leads to Arbitrary File Write — setuptoolsCWE-22 9.8AICriticalAI2025-05-17
CVE-2024-6345 Remote Code Execution in pypa/setuptools — pypa/setuptoolsCWE-94 9.8 -2024-07-15
CVE-2022-21668 Pipenv's requirements.txt parsing allows malicious index url in comments — pipenvCWE-20 8.0 High2022-01-10

This page lists every published CVE security advisory associated with pypa. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.