MEDIUM 6.5 PyPI
GHSA-2wgc-48g2-cj5w · CVE-2024-21653, PYSEC-2024-33 vantage6 has insecure SSH configuration for node and server containers
Modified: 2/16/2024
package
PyPI / vantage6
pkg:pypi/vantage6
MEDIUM 6.5 PyPI
GHSA-36gx-9q6h-g429 · CVE-2022-39228, PYSEC-2023-313 vantage6 vulnerable to Observable Response Discrepancy
Modified: 5/29/2026
MEDIUM 4.2 PyPI
GHSA-4946-85pr-fvxh · CVE-2024-23823 vantage6's CORS settings overly permissive
Modified: 3/15/2024
HIGH 8.8 PyPI
GHSA-4w59-c3gc-rrhp · CVE-2023-23929, PYSEC-2023-54 vantage6 refresh tokens do not expire
Modified: 11/18/2024
MEDIUM 5.3 PyPI
GHSA-5h3x-6gwf-73jm · CVE-2024-24770 vantage6 vulnerable to a username timing attack on recover password/MFA token
Modified: 2/4/2026
HIGH 7.2 PyPI
GHSA-5m22-cfq9-86x6 · CVE-2023-23930, PYSEC-2023-196 Pickle serialization vulnerable to Deserialization of Untrusted Data
Modified: 11/18/2024
MEDIUM 5.4 PyPI
GHSA-7x94-6g2m-3hp2 · CVE-2023-28635, PYSEC-2023-198 Defining resource name as integer may give unintended access in vantage6
Modified: 11/18/2024
LOW 2.7 PyPI
GHSA-99r4-cjp4-3hmx · CVE-2024-32969 vantage6 collaboration admins can extend their influence by expanding the collaboration
Modified: 5/23/2024
MEDIUM 5.4 PyPI
GHSA-gc57-xhh5-m94r · CVE-2023-41882, PYSEC-2023-201 Improper Access Control in vantage6
Modified: 11/18/2024
LOW PyPI
GHSA-j6g5-p62x-58hw · CVE-2025-43863, PYSEC-2025-220 vantage6 lacks brute-force protection on change password functionality
Modified: 5/20/2026
LOW 3.7 PyPI
GHSA-rf54-7qrr-96j6 · CVE-2023-41881, PYSEC-2023-200 vantage6 does not properly delete linked resources when deleting a collaboration
Modified: 11/18/2024
LOW 3.5 PyPI
GHSA-rjmv-52mp-gjrr · CVE-2024-22193, PYSEC-2024-32 vantage6 may create unencrypted tasks in encrypted collaboration
Modified: 2/16/2024
MEDIUM 6.5 PyPI
GHSA-vvjv-97j8-94xh · CVE-2023-22738, PYSEC-2023-53 vantage6 vulnerable to Improper Preservation of Permissions
Modified: 11/18/2024
HIGH 8.8 PyPI
GHSA-w9h2-px87-74vx · CVE-2024-21649, PYSEC-2024-30 vantage6 remote code execution vulnerability
Modified: 2/16/2024
HIGH 7.2 PyPI
PYSEC-2023-196 · CVE-2023-23930, GHSA-5m22-cfq9-86x6 Modified: 11/8/2023
MEDIUM 4.3 PyPI
PYSEC-2023-200 · CVE-2023-41881, GHSA-rf54-7qrr-96j6 Modified: 11/8/2023
MEDIUM 4.3 PyPI
PYSEC-2023-201 · CVE-2023-41882, GHSA-gc57-xhh5-m94r Modified: 11/8/2023
MEDIUM 6.5 PyPI
PYSEC-2023-313 · CVE-2022-39228, GHSA-36gx-9q6h-g429 Modified: 5/21/2026
— PyPI
PYSEC-2023-52 · CVE-2022-39228, GHSA-36gx-9q6h-g429 Modified: 5/19/2026
— PyPI
PYSEC-2023-53 · CVE-2023-22738, GHSA-vvjv-97j8-94xh Modified: 11/8/2023
— PyPI
PYSEC-2023-54 · CVE-2023-23929, GHSA-4w59-c3gc-rrhp Modified: 11/8/2023
HIGH 8.8 PyPI
PYSEC-2024-30 · CVE-2024-21649, GHSA-w9h2-px87-74vx Modified: 2/8/2024
LOW 3.7 PyPI
PYSEC-2024-31 · CVE-2024-21671, GHSA-45gq-q4xh-cp53 Modified: 1/14/2025
MEDIUM 4.3 PyPI
PYSEC-2024-32 · CVE-2024-22193, GHSA-rjmv-52mp-gjrr Modified: 2/8/2024
CRITICAL 9.8 PyPI
PYSEC-2025-220 · CVE-2025-43863, GHSA-j6g5-p62x-58hw Modified: 5/20/2026