PyPi: Mesop

CVE-2024-45601

Safety vulnerability ID: 73281

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Sep 18, 2024 Updated at Nov 13, 2024

Scan your Python projects for vulnerabilities →

Advisory

A vulnerability in Mesop's static file serving functionality could allow unauthorized access to sensitive files. The application did not properly restrict the types of files that could be served, potentially exposing confidential information or enabling arbitrary code execution if sensitive files were inadvertently placed in the served directory

Affected package

mesop

Latest version: 0.12.9

Build UIs in Python

Affected versions

Fixed versions

Vulnerability changelog

This vulnerability has no description

Resources

https://github.com/advisories/GHSA-pmv9-3xqp-8w42
https://github.com/google/mesop/commit/17fb769d6a91f0a8cbccfab18f64977b158a6a31
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45601

Use this package?

Scan your Python project for dependency vulnerabilities in two minutes

Scan your application