pyasn1

PyPI2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting pyasn1page 1 of 1

CVE-2026-23490HIGHCVSS 7.5EG 7.5✓ Fixed in 0.6.2
2026-01-16
vulnerable: 0.6.1
pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.2, a Denial-of-Service issue has been found that leads to memory exhaustion from malformed RELATIVE-OID with excessive continuation octets. This vulnerability is fixed in 0.6.2.
CVE-2026-30922HIGHCVSS 7.5EG 7.5✓ Fixed in 0.6.3
2026-03-18
vulnerable: 0.0.10a ... 0.6.2 (40 versions)
pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.3, the `pyasn1` library is vulnerable to a Denial of Service (DoS) attack caused by uncontrolled recursion when decoding ASN.1 data with deeply nested structures. An attacker can s…

Check whether pyasn1 is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for pyasn1 CVEs against the assets you own.

Start Free Scan →