Latest version: v4.3.4
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| CVE-2024-24762 | 71141 |
Openbb version 4.2.0 updates its `fastapi` dependency from `^0.104.1`… |
|
HIGH | 7.5 |
| CVE-2024-27306 | 71126 |
Openbb version 4.2.0 updates its `aiohttp` dependency from `^3.9.0` t… |
|
- | - |
| CVE-2023-23630 | 53366 |
Openbb 2.4.0 updates its NPM dependency 'eta' to v2.0.0 to include se… |
|
MEDIUM | 6.1 |
| CVE-2022-25967 | 53379 |
Openbb 2.4.0 updates its NPM dependency 'eta' to v2.0.0 to include se… |
|
HIGH | 8.8 |
| CVE-2022-40899 | 53330 |
Openbb 2.3.0 updates its dependency 'future' to v0.18.3 to include a … |
|
HIGH | 7.5 |
| CVE-2022-3786 | 53328 |
Openbb 2.3.0 updates its dependency 'cryptography' to v39.0.0 to incl… |
|
HIGH | 7.5 |
| CVE-2022-23491 | 53327 |
Openbb 2.3.0 updates its dependency 'certifi' to v2022.12.7 to includ… |
|
HIGH | 7.5 |
| CVE-2022-3602 | 53329 |
Openbb 2.3.0 updates its dependency 'cryptography' to v39.0.0 to incl… |
|
HIGH | 7.5 |
| CVE-2022-24439 | 53331 |
Openbb 2.3.0 updates its dependency 'gitpython' to v3.1.30 to include… |
|
CRITICAL | 9.8 |