Vendor
Pygments
Products
1
CVEs
3
Across products
3
Status
Private
Products
1- Pygments3 CVEspypi
Recent CVEs
3| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2015-8557 | Cri | 0.52 | 9.0 | 0.07 | Jan 8, 2016 | The FontManager._get_nix_font_path function in formatters/img.py in Pygments 1.2.2 through 2.0.2 allows remote attackers to execute arbitrary commands via shell metacharacters in a font name. | ||
| CVE-2026-4539 | Low | 0.14 | 3.3 | 0.00 | Mar 22, 2026 | A security flaw has been discovered in pygments up to 2.19.2. The impacted element is the function AdlLexer of the file pygments/lexers/archetype.py. The manipulation results in inefficient regular expression complexity. The attack is only possible with local access. The exploit… | ||
| CVE-2022-40896 | 0.00 | — | 0.01 | Jul 19, 2023 | A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer. |
- risk 0.52cvss 9.0epss 0.07
The FontManager._get_nix_font_path function in formatters/img.py in Pygments 1.2.2 through 2.0.2 allows remote attackers to execute arbitrary commands via shell metacharacters in a font name.
- risk 0.14cvss 3.3epss 0.00
A security flaw has been discovered in pygments up to 2.19.2. The impacted element is the function AdlLexer of the file pygments/lexers/archetype.py. The manipulation results in inefficient regular expression complexity. The attack is only possible with local access. The exploit…
- CVE-2022-40896Jul 19, 2023risk 0.00cvss —epss 0.01
A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.