Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/certifi@2023.5.7
purl pkg:pypi/certifi@2023.5.7
Next non-vulnerable version 2024.7.4
Latest non-vulnerable version 2024.7.4
Risk 4.1
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-2wd3-e3mb-ebgn
Aliases:
CVE-2024-39689
GHSA-248v-346w-9cwc
PYSEC-2024-230
Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi starting in 2021.05.30 and prior to 2024.07.4 recognized root certificates from `GLOBALTRUST`. Certifi 2024.07.04 removes root certificates from `GLOBALTRUST` from the root store. These are in the process of being removed from Mozilla's trust store. `GLOBALTRUST`'s root certificates are being removed pursuant to an investigation which identified "long-running and unresolved compliance issues."
2024.7.4
Affected by 0 other vulnerabilities.
VCID-qx4m-q293-ckhj
Aliases:
CVE-2023-37920
GHSA-xqr8-7jwr-rhp7
PYSEC-2023-135
Certifi 2023.07.22 removes root certificates from "e-Tugra" from the root store. These are in the process of being removed from Mozilla's trust store. e-Tugra's root certificates are being removed pursuant to an investigation prompted by reporting of security issues in their systems.
2023.7.22
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T23:03:44.256840+00:00 GitLab Importer Affected by VCID-2wd3-e3mb-ebgn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2024-39689.yml 38.4.0
2026-04-16T22:34:30.674261+00:00 GitLab Importer Affected by VCID-qx4m-q293-ckhj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2023-37920.yml 38.4.0
2026-04-12T00:21:36.825460+00:00 GitLab Importer Affected by VCID-2wd3-e3mb-ebgn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2024-39689.yml 38.3.0
2026-04-11T23:53:34.564803+00:00 GitLab Importer Affected by VCID-qx4m-q293-ckhj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2023-37920.yml 38.3.0
2026-04-03T00:29:10.423111+00:00 GitLab Importer Affected by VCID-2wd3-e3mb-ebgn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2024-39689.yml 38.1.0
2026-04-02T23:56:39.643037+00:00 GitLab Importer Affected by VCID-qx4m-q293-ckhj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2023-37920.yml 38.1.0
2026-04-01T15:16:30.791694+00:00 PyPI Importer Affected by VCID-2wd3-e3mb-ebgn https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 38.0.0
2026-04-01T15:14:30.047060+00:00 PyPI Importer Affected by VCID-qx4m-q293-ckhj https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 38.0.0
2026-04-01T12:49:39.042864+00:00 Pypa Importer Affected by VCID-2wd3-e3mb-ebgn https://github.com/pypa/advisory-database/blob/main/vulns/certifi/PYSEC-2024-230.yaml 38.0.0
2026-04-01T12:48:31.878757+00:00 Pypa Importer Affected by VCID-qx4m-q293-ckhj https://github.com/pypa/advisory-database/blob/main/vulns/certifi/PYSEC-2023-135.yaml 38.0.0