Early Access — Mondoo Vulnerability Intelligence is currently in preview.
Mondoo Vulnerability Intelligence
Search vulnerabilities and malicious packages across npm, PyPI, Go, GitHub Actions, VS Code, and more.
Search vulnerabilities and malicious packages across npm, PyPI, Go, GitHub Actions, VS Code, and more.
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used (CVE-2024-5642)
cpython: Python HTMLParser quadratic complexity (CVE-2025-6069)
cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked (CVE-2025-8291)
python: Quadratic complexity in os.path.expandvars() with user-controlled template (CVE-2025-6075)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
0:3.9.25-2.el9_7Exploitability
AV:NAC:LPR:LUI:NScope
S:UImpact
C:NI:NA:LCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L