Package impact
PIP / pip
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-6357 | medium | — | 5.5 | 1mo ago | pip Vulnerable to Inclusion of Functionality from Untrusted Control Sphere | |||
| CVE-2026-3219 | medium | — | 5.5 | 1mo ago | pip has an interpretation conflict due to handling both concatenated tar and ZIP files as ZIP files |