PyPI package
pydantic-ai
pkg:pypi/pydantic-ai
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-25580 | — | >= 0.0.26, < 1.56.0 | 1.56.0 | Feb 6, 2026 | Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. From 0.0.26 to before 1.56.0, aServer-Side Request Forgery (SSRF) vulnerability exists in Pydantic AI's URL download functionality. When applications accept message history from un | ||
| CVE-2026-25640 | — | >= 1.34.0, < 1.51.0 | 1.51.0 | Feb 6, 2026 | Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. From 1.34.0 to before 1.51.0, a path traversal vulnerability in the Pydantic AI web UI allows an attacker to serve arbitrary JavaScript in the context of the application by crafti |
- CVE-2026-25580Feb 6, 2026affected >= 0.0.26, < 1.56.0fixed 1.56.0
Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. From 0.0.26 to before 1.56.0, aServer-Side Request Forgery (SSRF) vulnerability exists in Pydantic AI's URL download functionality. When applications accept message history from un
- CVE-2026-25640Feb 6, 2026affected >= 1.34.0, < 1.51.0fixed 1.51.0
Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. From 1.34.0 to before 1.51.0, a path traversal vulnerability in the Pydantic AI web UI allows an attacker to serve arbitrary JavaScript in the context of the application by crafti