Seperman Deepdiff vulnerabilities
2 known vulnerabilities affecting seperman/deepdiff.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2025-58367P2CRITICALCVSS 10.0v>= 5.0.0, < 8.6.12025-09-05
CVE-2025-58367 [CRITICAL] CWE-915 CVE-2025-58367: DeepDiff is a project focused on Deep Difference and search of any Python data. Versions 5.0.0 throu
DeepDiff is a project focused on Deep Difference and search of any Python data. Versions 5.0.0 through 8.6.0 are vulnerable to class pollution via the Delta class constructor, and when combined with a gadget available in DeltaDiff, it can lead to Denial of Service and Remote Code Execution (via insecure Pickle deserialization) exploitation. The ga
ghsanvdosv
CVE-2026-33155P3HIGHCVSS 7.5v>= 5.0.0, < 8.6.22026-03-20
CVE-2026-33155 [HIGH] CWE-400 CVE-2026-33155: DeepDiff is a project focused on Deep Difference and search of any Python data. From version 5.0.0 t
DeepDiff is a project focused on Deep Difference and search of any Python data. From version 5.0.0 to before version 8.6.2, the pickle unpickler _RestrictedUnpickler validates which classes can be loaded but does not limit their constructor arguments. A few of the types in SAFE_TO_IMPORT have constructors that allocate memory proportional to their inp
ghsanvdosv