pkg:Debian/python-pip

14 total CVEsHIGH4MEDIUM5

✅ Check your installed version

All known vulnerabilities

  • HIGH8.4CVE-2013-1629Improper Input Validation in pip
    from 0, < 1.3.1-1
  • HIGH7.8CVE-2018-20225An issue was discovered in pip (all versions) because it installs the version with the highest version number, even if the user had intende…
    from 0
  • HIGH7.5CVE-2019-20916python-pip - security update
    from 0, < 9.0.1-2+deb9u2
  • HIGH7.5CVE-2019-20916python-pip - security update
    from 0, < 20.0.2-1
  • MEDIUM6.2CVE-2014-8991pip lack of randomness in build directory
    from 0, < 1.5.6-4
  • MEDIUM5.9CVE-2013-5123Improper Authentication in pip
    from 0, < 1.4.1-1
  • MEDIUM5.7CVE-2021-3572Improper Input Validation in pip
    from 0, < 20.3.4-2
  • MEDIUM5.5CVE-2023-5752Command Injection in pip when used with Mercurial
    from 0, < 20.3.4-4+deb11u2
  • MEDIUM5.5CVE-2023-5752Command Injection in pip when used with Mercurial
    from 0, < 20.3.4-4+deb11u2
  • CVE-2026-8643pip would treat console_scripts and gui_scripts as paths instead of file names without sanitizing the resolved absolute path to the install…
    from 0
  • CVE-2026-6357pip Vulnerable to Inclusion of Functionality from Untrusted Control Sphere
    from 0
  • CVE-2026-3219pip has an interpretation conflict due to handling both concatenated tar and ZIP files as ZIP files
    from 0
  • CVE-2026-1703pip Path Traversal vulnerability
    from 0
  • CVE-2025-8869pip's fallback tar extraction doesn't check symbolic links point to extraction directory
    from 0, < 20.3.4-4+deb11u2