Vulnerability Charts

Last modified:

CVSS values listed are those of the highest scoring CVEs for any listed version. The highest possible score is 10.0, indicating that a version is considered to be ❌ extremely unsafe. The lowest possible score is 0.0, indicating that a version is currently considered to be ✔️ safe (although, other designations are possible, depending on other factors, such as whether the product has reached EoL, is still actively supported, is still under development and therefore whether it's ready to be used in a production environment and etc).

Versions will also be marked as either ✔️ safe or ❌ unsafe accordingly, or as ➖ in development (versions marked as in development may be safe, but aren't yet considered to be ready for a production environment, or may have a changing codebase, which therefore can't yet be predicated as either safe or unsafe), or as 〰️ disputed (CVEs exist, and there are sources which identify the version as unsafe, but the CVE or unsafe designation may be disputed, either by the vendor itself or alternative sources).

Please note that a ✔️ safe designation does NOT mean that the designated versions are free from bugs and errors! When a new "patch release" becomes available, in general, these patch releases rectify various problems, bugs and so forth which could be encountered when using outdated versions from prior to the particular patch release. As such, using the latest version for any particular branch is always advised in favour of using older, outdated versions.

If you find any errors, would like to add to the list or make some changes, please send a pull request to the GitHub repository for this page.
Licensing (for this repository): MIT License (feel free to copy and adapt it if you want).

CVSS Safe? Notes
Python versions Python 3.13.0
(Planned for 2024.10.01)		 0.0
Python 3.12.3
(2024.04.09)		 0.0 ✔️ (3.12.3 is the current latest version on the 3.12x branch).
Python 3.12.1 – 3.12.2
(2023.12.08 – 2024.02.06)		 **7.5 **❌ See: **CVE-2023-52425
**Affects bundled dependency, rather than the core package itself;
Patched versions introduce workaround, though the dependency itself remains affected.
Python 3.12.0
(2023.10.02)		 4.9~**7.5
Python 3.11.9
(2024.04.02)		 0.0 ✔️ (3.11.9 is the current latest version on the 3.11x branch).
Python 3.11.5 – 3.11.8
(2023.08.24 – 2024.02.06)		 **7.5 **❌
Python 3.11.4
(2023.06.06)		 5.3~**7.5
Python 3.11.0 – 3.11.3
(2022.10.24 – 2023.04.05)		 7.5 See: CVE-2023-24329.
Python 3.10.14
(2024.03.19)		 0.0 ✔️ (3.10.14 is the current latest version on the 3.10x branch).
Python 3.10.13
(2023.08.24)		 **7.5 **❌
Python 3.10.12
(2023.06.06)		 5.3~**7.5
Python 3.10.0 – 3.10.11
(2021.10.04 – 2023.04.05)		 7.5 See: CVE-2023-24329, CVE-2020-10735, CVE-2018-25032.
Python 3.9.19
(2024.03.19)		 0.0 ✔️ (3.9.19 is the current latest version on the 3.9x branch).
Python 3.9.18
(2023.08.24)		 **7.5 **❌
Python 3.9.17
(2023.06.06)		 5.3~**7.5
Python 3.9.5 – 3.9.16
(2021.05.03 – 2022.12.06)		 7.5 See: CVE-2023-24329, CVE-2020-10735, CVE-2018-25032.
Python 3.9.0 – 3.9.4
(2020.10.05 – 2021.04.04)		 9.8~10.0 See: CVE-2021-3426, NVD Results (Python 3.9.4).
Python 3.8.19
(2024.03.19)		 0.0 ✔️ (3.8.19 is the current latest version on the 3.8x branch).
Python 3.8.18
(2023.08.24)		 **7.5 **❌
Python 3.8.17
(2023.06.06)		 5.3~**7.5
Python 3.8.10 – 3.8.16
(2021.05.03 – 2022.12.06)		 7.5 See: CVE-2023-24329, CVE-2020-10735.
Python 3.8.0 – 3.8.9
(2019.10.14 – 2021.04.02)		 9.8~10.0 See: #42103, #42051, #40791, NVD Results (Python 3.9.1).
Python 3.7.17
(2023.06.06)		 5.3~**7.5 (3.7.17 is the final version on the 3.7x branch).
Python 3.7.11 – 3.7.16
(2021.06.28 – 2022.12.06)		 7.5 See: CVE-2023-24329, CVE-2020-10735.
Python 3.7.0 – 3.7.10
(2018.06.27 – 2021.02.15)		 9.8~10.0 See: #42103, #42051, #40791, NVD Results (Python 3.9.1).
Python 3.6.14 – 3.6.15
(2021.06.28 – 2021.09.04)		 7.5 (3.6.15 is the final version on the 3.6x branch).
Python ≤ 3.6.13
(2021.02.15)		 9.8~10.0 See: #42103, #42051, #40791, NVD Results (Python 3.9.1).