Package impact
PyPI / pipecat-ai
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-62373 | critical | 9.8 | 9.8 | 1mo ago | Pipecat: Remote Code Execution by Pickle Deserialization Through LivekitFrameSerializer | |||
| CVE-2026-44716 | high | — | 8.0 | 19d ago | Pipecat: Path Traversal in Pipecat Runner `/files` Endpoint — Arbitrary File Read via `%2F`-Encoded Separator |