Package impact
PIP / pip
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2026-6357 | medium | — | 5.5 | 1mo ago | pip Vulnerable to Inclusion of Functionality from Untrusted Control Sphere | |
| CVE-2026-3219 | medium | — | 5.5 | 1mo ago | pip has an interpretation conflict due to handling both concatenated tar and ZIP files as ZIP files |