pkg:PyPI/cbor2

5 total CVEsHIGH5

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2026-26209cbor2 has a Denial of Service via Uncontrolled Recursion in cbor2.loads
    from 0, < 5.9.0
  • HIGH7.5CVE-2025-68131CBORDecoder reuse can leak shareable values across decode calls
    >= 3.0.0, < 5.8.0
  • HIGH7.5CVE-2025-68131CBORDecoder reuse can leak shareable values across decode calls
    >= 3.0.0, < 5.8.0
  • HIGH7.5CVE-2024-26134Potential buffer overflow in CBOR2 decoder
    >= 5.5.1, < 5.6.2
  • HIGH7.5CVE-2024-26134Potential buffer overflow in CBOR2 decoder
    from 0, < 387755eacf0be35591a478d3c67fe10618a6d542, < 4de6991ba29bf2290d7b9d83525eda7d021873df, < 387755eacf0be35591a478d3c67fe10618a6d542, < 4de6991ba29bf2290d7b9d83525eda7d021873df | >= 5.5.1, < 5.6.2
PyPI/cbor2 — 5 CVEs · VulnScope