🌐
Snyk
security.snyk.io › snyk vulnerability database › linux › wolfi
python-3.10 vulnerabilities | Snyk
Known vulnerabilities in the python-3.10 package.
🌐
Readthedocs
python-security.readthedocs.io › vulnerabilities.html
Python Security Vulnerabilities — Python Security 0.0 documentation
Vulnerable Versions · Python issue · CVE-2023-24329 · Timeline · Links · Buffer overflow in the _sha3 module in Python 3.10 and older · Fixed In · Python issue · CVE-2022-37454 · Timeline · Links · Slow IDNA decoding with large strings · Fixed In · Python issue ·
Discussions
[bitnami/python] : Vulnerability findings in Python 3.10, 3.11 & 3.12
Name and Version bitnami/python:3.10, bitnami/python:3.11, bitnami/python:3.12 What architecture are you using? amd64 What steps will reproduce the bug? There are some vulnerability findings I came across while making a regular scan. Rep... More on github.com
🌐 github.com
5
September 13, 2024
Corporate IT have banned all versions of python lower than the latest
Don't know what your environments look like, but we upgraded almost all of ours to 3.12, I would definitely recommend it. Most packages are already up to date. That being said, if IT doesn't understand why you might need to run 3.11 for some packages, can't you simply provide them a list of the packages that don't support 3.12 and tell them you'll upgrade those systems when their dependencies catch up? More on reddit.com
🌐 r/Python
218
942
November 21, 2023
[deleted by user]
Few ways: update the base image if possible. Idk if python:3.10-slim is a latest-style tag or if subversions exist? use the image package manager to install the fix yourself uninstall the affected package entirely if you are not using it if you are not using the package and it’s installed by default, look for a less bloated image More on reddit.com
🌐 r/docker
8
3
April 8, 2023
Why does python:latest Docker tag point at the python:3.10.1-bullseye tag?
Docker image security scanners are kind of notoriously inaccurate and especially so with Debian images . More on reddit.com
🌐 r/Python
15
15
January 6, 2022
🌐
Maikuolan
maikuolan.github.io › Vulnerability-Charts › python.html
Vulnerability Charts – Python
January 7, 2026 - A chart of which Python versions are safe/unsafe, and their CVSS.
🌐
CVE Details
cvedetails.com › vulnerability-list › vendor_id-10210 › product_id-18230 › version_id-658801 › Python-Python-3.10.0.html
Python Python version 3.10.0 : Security vulnerabilities, CVEs
Python 3.x through 3.10 has an open redirection vulnerability in lib/http/server.py due to no protection against multiple (/) at the beginning of URI path which may leads to information disclosure. NOTE: this is disputed by a third party because the http.server.html documentation page states ...
🌐
GitHub
github.com › bitnami › containers › issues › 72409
[bitnami/python] : Vulnerability findings in Python 3.10, 3.11 & 3.12 · Issue #72409 · bitnami/containers
September 13, 2024 - Name and Version bitnami/python:3.10, bitnami/python:3.11, bitnami/python:3.12 What architecture are you using? amd64 What steps will reproduce the bug? There are some vulnerability findings I came across while making a regular scan. Rep...
Author   msachinraj
🌐
CVE Details
cvedetails.com › version › 658798 › Python-Python-3.10.0.html
Python Python 3.10.0 security vulnerabilities, CVEs
Python Python version 3.10.0 security vulnerabilities, CVEs, exploits, vulnerability statistics, CVSS scores and references
🌐
Snyk
security.snyk.io › snyk vulnerability database › linux › ubuntu
python3.10 | Snyk
Security vulnerabilities and package health score for ubuntu:22.04 package python3.10
🌐
Vulmon
vulmon.com › home › search results
python python 3.10.0 vulnerabilities and exploits
Vulmon Recent Vulnerabilities Research Posts Trends Blog Docs About Contact Vulmon Alerts ... A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is how the FTP client trusts the host from the PASV response by default.
🌐
Cybersecurity Help
cybersecurity-help.cz › vdb › python_org › python › 3.10.8
Known Vulnerabilities in Python 3.10.8
List of known vulnerabilities in Python in version 3.10.8
Find elsewhere
🌐
CVE Details
cvedetails.com › version › 2065835 › Python-Python-3.12.10.html
Python Python 3.12.10 security vulnerabilities, CVEs
Python Python version 3.12.10 security vulnerabilities, CVEs, exploits, vulnerability statistics, CVSS scores and references
🌐
Readthedocs
python-security.readthedocs.io › vuln › sha3-buffer-overflow.html
Buffer overflow in the _sha3 module in Python 3.10 and older — Python Security 0.0 documentation
The canonical database for vulnerabilities affecting Python is available on GitHub in the Open Source Vulnerability (OSV) format. This vulnerability can be viewed online at the Open Source Vulnerability Database. CVE-2022-37454 affects Python versions prior to 3.11.
🌐
Reddit
reddit.com › r/python › corporate it have banned all versions of python lower than the latest
r/Python on Reddit: Corporate IT have banned all versions of python lower than the latest
November 21, 2023 -

I.e. right now they are insisting we use v3.12 only because older versions have some vulnerabilities their scanner picked up.

I need to somehow explain that this is a terrible idea and that many packages won't support the most up to date version without causing them to panic and overstep even more.

This requirement is company wide (affects development, data science and analytics).

Edit - thanks for all the advice, I think the crux is that they don't understand how the versioning works and are confusing major and minor versions. I will explain this and hopefully we will be able to use the latest minor versions for 3.11/3.10/3.9

Top answer
1 of 5
707
Don't know what your environments look like, but we upgraded almost all of ours to 3.12, I would definitely recommend it. Most packages are already up to date. That being said, if IT doesn't understand why you might need to run 3.11 for some packages, can't you simply provide them a list of the packages that don't support 3.12 and tell them you'll upgrade those systems when their dependencies catch up?
2 of 5
159
And yet some corporate IT have also banned all Python newer than 2.7.
🌐
CVE Details
cvedetails.com › version › 1661684 › Python-Python-3.10.12.html
Python Python 3.10.12 security vulnerabilities, CVEs
Vulnerability statistics provide a quick overview for security vulnerabilities of Python » Python » version 3.10.12 .
🌐
Snyk
snyk.io › test › docker › python:3.10-slim
Vulnerability report for Docker python:3.10-slim | Snyk
Learn more about Docker python:3.10-slim vulnerabilities. Docker image python has 27 known vulnerabilities found in 63 vulnerable paths.
🌐
CVE Details
cvedetails.com › vulnerability-list › vendor_id-10210 › product_id-18230 › Python-Python.html
Python Python : Security vulnerabilities, CVEs
A defect was discovered in the Python “ssl” module where there is a memory race condition with the ssl.SSLContext methods “cert_store_stats()” and “get_ca_certs()”. The race condition can be triggered if the methods are called at the same time as certificates are loaded into the SSLContext, such as during the TLS handshake with a certificate directory configured. This issue is fixed in CPython 3.10...
🌐
Stack
stack.watch › product › python › python
Python Security Vulnerabilities in 2026 - stack.watch
This vulnerability could lead to FTP client scanning ports, which otherwise would not have been possible. ... Python 3.x through 3.10 has an open redirection vulnerability in lib/http/server.py due to no protection against multiple (/) at the beginning of URI path which may leads to information ...
🌐
Cisco Bug Search Tool
bst.cisco.com › quickview › bug › CSCwe54516
Vulnerabilities in python 3.8.10 CVE-2023-24329
We cannot provide a description for this page right now
🌐
CVE Details
cvedetails.com › version › 1371132 › Python-Python-3.8.10.html
Python Python 3.8.10 security vulnerabilities, CVEs
Python Python version 3.8.10 security vulnerabilities, CVEs, exploits, vulnerability statistics, CVSS scores and references
🌐
CVE Details
cvedetails.com › version › 1371181 › Python-Python-3.10.10.html
Python Python 3.10.10 security vulnerabilities, CVEs
Python Python version 3.10.10 security vulnerabilities, CVEs, exploits, vulnerability statistics, CVSS scores and references
🌐
Cisco Bug Search Tool
bst.cisco.com › quickview › bug › CSCwj01783
Vulnerabilities in python 3.10.6 CVE-2022-37454 and others
We cannot provide a description for this page right now
Related queries
python vulnerabilities by version
python 3.12 vulnerabilities
python 3.11 vulnerabilities
python 3.8 10 vulnerabilities
python 3.9 vulnerability
cve-2023-24329
python 2.7 17 vulnerabilities
python 3.10 vulnerabilities github