Product Research Enterprise Plans Docs

PyPi: Up42-Py

CVE-2024-28219

Transitive

Safety vulnerability ID: 67975

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Apr 03, 2024 Updated at Dec 12, 2024

Scan your Python projects for vulnerabilities →

Advisory

Up42-py version 0.37.2 updates its dependency on the pillow library, upgrading from version 10.2.0 to 10.3.0. This update addresses the security vulnerability identified in CVE-2024-28219.

Affected package

up42-py

Latest version: 2.1.1

Python SDK for UP42, the geospatial marketplace and developer platform.

Affected versions

Fixed versions

Vulnerability changelog

**Apr 8, 2024**

Dependabot security updates:
- Bump black from 22.12.0 to 24.3.0
- Bump pillow from 10.2.0 to 10.3.0

Resources

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28219

Use this package?

Scan your Python project for dependency vulnerabilities in two minutes

Scan your application