Package impact
PyPI / prefect
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-7723 | high | 7.3 | 7.3 | 27d ago | Prefect Unauthenticated Event Injection via /api/events/in WebSocket | |||
| CVE-2026-7725 | medium | 6.3 | 6.3 | 26d ago | Prefect Git Argument Injection in GitRepository Pull Steps | |||
| CVE-2026-7722 | medium | 5.3 | 5.3 | 27d ago | Prefect Auth Bypass via endswith() Health Check Exemption | |||
| CVE-2026-7724 | medium | 5.0 | 5.0 | 27d ago | Prefect SSRF Bypass via DNS Rebinding in validate_restricted_url |