Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/certifi@2023.7.22
purl pkg:pypi/certifi@2023.7.22
Next non-vulnerable version 2024.7.4
Latest non-vulnerable version 2024.7.4
Risk 3.4
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-2wd3-e3mb-ebgn
Aliases:
CVE-2024-39689
GHSA-248v-346w-9cwc
PYSEC-2024-230
Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi starting in 2021.05.30 and prior to 2024.07.4 recognized root certificates from `GLOBALTRUST`. Certifi 2024.07.04 removes root certificates from `GLOBALTRUST` from the root store. These are in the process of being removed from Mozilla's trust store. `GLOBALTRUST`'s root certificates are being removed pursuant to an investigation which identified "long-running and unresolved compliance issues."
2024.7.4
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-qx4m-q293-ckhj Certifi 2023.07.22 removes root certificates from "e-Tugra" from the root store. These are in the process of being removed from Mozilla's trust store. e-Tugra's root certificates are being removed pursuant to an investigation prompted by reporting of security issues in their systems. CVE-2023-37920
GHSA-xqr8-7jwr-rhp7
PYSEC-2023-135

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T23:03:44.260277+00:00 GitLab Importer Affected by VCID-2wd3-e3mb-ebgn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2024-39689.yml 38.4.0
2026-04-16T22:34:30.677585+00:00 GitLab Importer Fixing VCID-qx4m-q293-ckhj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2023-37920.yml 38.4.0
2026-04-12T00:21:36.829199+00:00 GitLab Importer Affected by VCID-2wd3-e3mb-ebgn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2024-39689.yml 38.3.0
2026-04-11T23:53:34.568334+00:00 GitLab Importer Fixing VCID-qx4m-q293-ckhj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2023-37920.yml 38.3.0
2026-04-03T00:29:10.426431+00:00 GitLab Importer Affected by VCID-2wd3-e3mb-ebgn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2024-39689.yml 38.1.0
2026-04-02T23:56:39.646340+00:00 GitLab Importer Fixing VCID-qx4m-q293-ckhj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2023-37920.yml 38.1.0
2026-04-02T16:59:58.315263+00:00 GHSA Importer Fixing VCID-qx4m-q293-ckhj https://github.com/advisories/GHSA-xqr8-7jwr-rhp7 38.1.0
2026-04-01T15:16:30.795298+00:00 PyPI Importer Affected by VCID-2wd3-e3mb-ebgn https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 38.0.0
2026-04-01T15:14:30.050509+00:00 PyPI Importer Fixing VCID-qx4m-q293-ckhj https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 38.0.0
2026-04-01T12:59:00.576102+00:00 GithubOSV Importer Fixing VCID-qx4m-q293-ckhj https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/07/GHSA-xqr8-7jwr-rhp7/GHSA-xqr8-7jwr-rhp7.json 38.0.0
2026-04-01T12:51:36.825567+00:00 GitLab Importer Fixing VCID-qx4m-q293-ckhj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/certifi/CVE-2023-37920.yml 38.0.0
2026-04-01T12:49:39.044826+00:00 Pypa Importer Affected by VCID-2wd3-e3mb-ebgn https://github.com/pypa/advisory-database/blob/main/vulns/certifi/PYSEC-2024-230.yaml 38.0.0
2026-04-01T12:48:31.881141+00:00 Pypa Importer Fixing VCID-qx4m-q293-ckhj https://github.com/pypa/advisory-database/blob/main/vulns/certifi/PYSEC-2023-135.yaml 38.0.0