Package impact
PyPI / dagster
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-41490 | high | 8.3 | 8.3 | 23d ago | Dagster Vulnerable to SQL Injection via Dynamic Partition Keys in Database I/O Manager Integrations | |||
| CVE-2025-51481 | unknown | — | — | 10mo ago | Local File Inclusion in dagster._grpc.impl.get_notebook_data in Dagster 1.10.14 allows attackers with access to the gRPC server to read arbitrary files by supplying path traversal sequences in the no… | |||
| CVE-2023-51232 | unknown | — | — | 11mo ago | Dagster vulnerable to Path Traversal attack through its /logs endpoint |