PyPI package
pikepdf
pkg:pypi/pikepdf
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-29421 | — | >= 1.3.0, < 2.10.0 | 2.10.0 | Apr 1, 2021 | models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries. |
- CVE-2021-29421Apr 1, 2021affected >= 1.3.0, < 2.10.0fixed 2.10.0
models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries.