VulnerableCode Package Details - pkg:pypi/scapy@2.4.1

Search for packages

Vulnerability	Summary	Fixed by
VCID-dy69-93q2-jucu Aliases: GHSA-cq46-m9x9-j8w2	Scapy Session Loading Vulnerable to Arbitrary Code Execution via Untrusted Pickle Deserialization An unsafe deserialization vulnerability in Scapy <v2.7.0 allows attackers to execute arbitrary code when a malicious session file is locally loaded via the `-s` option. This requires convincing a user to manually load a malicious session file. ---	There are no reported fixed by versions.

Vulnerability

Summary

Fixed by

VCID-dy69-93q2-jucu
Aliases:
GHSA-cq46-m9x9-j8w2

Scapy Session Loading Vulnerable to Arbitrary Code Execution via Untrusted Pickle Deserialization An unsafe deserialization vulnerability in Scapy <v2.7.0 allows attackers to execute arbitrary code **when a malicious session file is locally loaded via the `-s` option**. This requires convincing a user to manually load a malicious session file. ---

There are no reported fixed by versions.

Vulnerability	Summary	Aliases
VCID-2jhn-7xzz-qfdt	scapy 2.4.0 is affected by: Denial of Service. The impact is: infinite loop, resource consumption and program unresponsive. The component is: _RADIUSAttrPacketListField.getfield(self..). The attack vector is: over the network or in a pcap. both work.	PYSEC-2019-50
VCID-uyf3-v6w2-87ca	scapy 2.4.0 is affected by: Denial of Service. The impact is: infinite loop, resource consumption and program unresponsive. The component is: _RADIUSAttrPacketListField.getfield(self..). The attack vector is: over the network or in a pcap. both work.	CVE-2019-1010142 GHSA-mpf2-q34c-fc6j PYSEC-2019-120

Vulnerability

Summary

Aliases

VCID-2jhn-7xzz-qfdt

scapy 2.4.0 is affected by: Denial of Service. The impact is: infinite loop, resource consumption and program unresponsive. The component is: _RADIUSAttrPacketListField.getfield(self..). The attack vector is: over the network or in a pcap. both work.

PYSEC-2019-50

VCID-uyf3-v6w2-87ca

CVE-2019-1010142
GHSA-mpf2-q34c-fc6j
PYSEC-2019-120

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-06T06:16:41.587343+00:00	GitLab Importer	Affected by	VCID-dy69-93q2-jucu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/scapy/GHSA-cq46-m9x9-j8w2.yml	38.6.0
2026-06-05T16:55:25.273163+00:00	PyPI Importer	Fixing	VCID-uyf3-v6w2-87ca	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-05T16:55:25.241450+00:00	PyPI Importer	Fixing	VCID-2jhn-7xzz-qfdt	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-05T16:22:17.726949+00:00	GHSA Importer	Fixing	VCID-uyf3-v6w2-87ca	https://github.com/advisories/GHSA-mpf2-q34c-fc6j	38.6.0
2026-06-04T17:42:58.393665+00:00	GithubOSV Importer	Fixing	VCID-uyf3-v6w2-87ca	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2019/07/GHSA-mpf2-q34c-fc6j/GHSA-mpf2-q34c-fc6j.json	38.6.0
2026-06-04T16:19:30.368345+00:00	GitLab Importer	Fixing	VCID-uyf3-v6w2-87ca	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/scapy/CVE-2019-1010142.yml	38.6.0
2026-06-02T04:05:45.007261+00:00	Pypa Importer	Fixing	VCID-uyf3-v6w2-87ca	https://github.com/pypa/advisory-database/blob/main/vulns/scapy/PYSEC-2019-120.yaml	38.6.0