virtualenv — CVE history (PyPI)
virtualenv
2 CVEs affect the virtualenv PyPI package (highest CVSS 4.5). Latest disclosed: 2026-01-10. Full CVE history sourced from NVD.
Summary
- Package
virtualenv(PyPI)- Total CVEs
2- Actively exploited (CISA KEV)
- 0
- Highest CVSS
4.5- Latest disclosed
- 2026-01-10
Recent CVEs (top 2)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-22702 | Medium | 4.5 | — | 2026-01-10 | virtualenv is a tool for creating isolated virtual python environments. |
CVE-2011-4617 | — | — | — | 2011-12-31 | virtualenv.py in virtualenv before 1.5 allows local users to overwrite arbitrary files via a symlink attack on a certain file in /tmp/. |
All-time worst (top 1 by CVSS)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-22702 | Medium | 4.5 | — | 2026-01-10 | virtualenv is a tool for creating isolated virtual python environments. |