HIGH 7.5 PyPI
GHSA-w2gf-jxc9-pf2q · CVE-2024-41672, PYSEC-2024-203 sniff_csv provides filesystem access even when enable_external_access is disabled in duckdb
Modified: 6/10/2026
package
PyPI / duckdb
pkg:pypi/duckdb
HIGH 7.5 PyPI
PYSEC-2024-203 · CVE-2024-41672, GHSA-w2gf-jxc9-pf2q Modified: 6/10/2026
CRITICAL 9.8 PyPI
PYSEC-2024-25 · CVE-2024-22682 Modified: 2/6/2024
MEDIUM 6.5 PyPI
PYSEC-2025-112 · CVE-2025-64429, GHSA-vmp8-hg63-v2hp Modified: 5/20/2026