Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/opencv-python-headless@4.1.2.30
purl pkg:pypi/opencv-python-headless@4.1.2.30
Next non-vulnerable version 4.8.1.78
Latest non-vulnerable version 4.8.1.78
Risk 4.0
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-bfmd-hx4t-kydu
Aliases:
PYSEC-2023-184
opencv-python-headless versions before v4.8.1.78 bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863. opencv-python-headless v4.8.1.78 upgrades the bundled libwebp binary to v1.3.2.
4.8.1.78
Affected by 0 other vulnerabilities.
VCID-dv4w-gs1v-b7gs
Aliases:
GHSA-jh2j-j4j9-crg3
opencv-python-headless bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863
4.8.1.78
Affected by 0 other vulnerabilities.
VCID-jr8q-eaze-8yff
Aliases:
CVE-2019-5064
GHSA-q799-q27x-vp7w
An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV, before version 4.2.0. A specially crafted JSON file can cause a buffer overflow, resulting in multiple heap corruptions and potentially code execution. An attacker can provide a specially crafted file to trigger this vulnerability.
4.2.0.32
Affected by 1 other vulnerability.
4.2.0.34
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-2ds9-7qg8-b3aa CVE-2019-16249
GHSA-x3rm-644h-67m8
VCID-nvqy-vqv1-1ycn CVE-2019-9423
GHSA-8849-5h85-98qw

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-13T06:24:42.465556+00:00 GHSA Importer Affected by VCID-jr8q-eaze-8yff https://github.com/advisories/GHSA-q799-q27x-vp7w 38.6.0
2026-06-13T06:24:41.959596+00:00 GHSA Importer Fixing VCID-2ds9-7qg8-b3aa https://github.com/advisories/GHSA-x3rm-644h-67m8 38.6.0
2026-06-12T19:38:21.353803+00:00 GitLab Importer Affected by VCID-dv4w-gs1v-b7gs https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python-headless/GHSA-jh2j-j4j9-crg3.yml 38.6.0
2026-06-12T17:49:18.959418+00:00 GitLab Importer Fixing VCID-nvqy-vqv1-1ycn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python-headless/CVE-2019-9423.yml 38.6.0
2026-06-12T15:42:31.505085+00:00 GitLab Importer Affected by VCID-jr8q-eaze-8yff https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python-headless/CVE-2019-5064.yml 38.6.0
2026-06-12T15:42:31.326532+00:00 GitLab Importer Fixing VCID-2ds9-7qg8-b3aa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python-headless/CVE-2019-16249.yml 38.6.0
2026-06-12T08:02:41.488032+00:00 GithubOSV Importer Fixing VCID-2ds9-7qg8-b3aa https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/10/GHSA-x3rm-644h-67m8/GHSA-x3rm-644h-67m8.json 38.6.0
2026-06-12T04:22:34.402991+00:00 Pypa Importer Affected by VCID-bfmd-hx4t-kydu https://github.com/pypa/advisory-database/blob/main/vulns/opencv-python-headless/PYSEC-2023-184.yaml 38.6.0
2026-06-11T21:00:45.760996+00:00 PyPI Importer Affected by VCID-bfmd-hx4t-kydu https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 38.6.0