Package impact
PyPI / cairosvg
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-21236 | low | — | 2.5 | 6y ago | CairoSVG is a Python (pypi) package. CairoSVG is an SVG converter based on Cairo. In CairoSVG before version 2.5.1, there is a regular expression denial of service (REDoS) vulnerability. When process… | |||
| CVE-2026-31899 | unknown | — | — | 3mo ago | CairoSVG vulnerable to Exponential DoS via recursive <use> element amplification | |||
| CVE-2023-27586 | unknown | — | — | 3y ago | CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to version 2.7.0, Cairo can send requests to external hosts when processing SVG files. A malicious actor could send a special… |