VulnerableCode Package Details - pkg:pypi/opencv-python@3.4.1.15

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/opencv-python@3.4.1.15

Essentials
History (21)

purl	pkg:pypi/opencv-python@3.4.1.15

Next non-vulnerable version	4.8.1.78
Latest non-vulnerable version	4.8.1.78
Risk	4.0

Vulnerabilities affecting this package (11)

Vulnerability	Summary	Fixed by
VCID-2ds9-7qg8-b3aa Aliases: CVE-2019-16249 GHSA-x3rm-644h-67m8		4.1.2.30 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-2zx5-u81r-xfar Aliases: CVE-2019-19624 GHSA-jggw-2q6g-c3m6		4.1.0.25 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-4emq-jp96-xubx Aliases: GHSA-qr4w-53vh-m672	opencv-python bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863	4.8.1.78 Affected by 0 other vulnerabilities.
VCID-4sam-7au7-kyda Aliases: PYSEC-2023-183	opencv-python versions before v4.8.1.78 bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863. opencv-python v4.8.1.78 upgrades the bundled libwebp binary to v1.3.2.	4.8.1.78 Affected by 0 other vulnerabilities.
VCID-7g3v-p4h5-pufg Aliases: CVE-2019-14491 GHSA-fm39-cw8h-3p63		3.4.7.28 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 4.1.1.26 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-czcn-zgmz-b7fq Aliases: CVE-2019-5063 GHSA-m6vm-8g8v-xfjh	An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV 4.1.0. A specially crafted XML file can cause a buffer overflow, resulting in multiple heap corruptions and potential code execution. An attacker can provide a specially crafted file to trigger this vulnerability.	4.1.1.26 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-jr8q-eaze-8yff Aliases: CVE-2019-5064 GHSA-q799-q27x-vp7w	An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV, before version 4.2.0. A specially crafted JSON file can cause a buffer overflow, resulting in multiple heap corruptions and potentially code execution. An attacker can provide a specially crafted file to trigger this vulnerability.	4.2.0.32 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-m2dt-hqz3-mfg5 Aliases: CVE-2019-14493 GHSA-3448-vrgh-85xr		4.1.1.26 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-nvqy-vqv1-1ycn Aliases: CVE-2019-9423 GHSA-8849-5h85-98qw		4.1.2.30 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-tfqy-zten-x7fa Aliases: CVE-2019-15939 GHSA-hxfw-jm98-v4mq		4.1.1.26 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-x7d2-e2cd-v3c9 Aliases: CVE-2019-14492 GHSA-fw99-f933-rgh8		3.4.7.28 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 4.1.1.26 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (3)

Vulnerability	Summary	Aliases
VCID-awue-gu67-9uhe		CVE-2018-5268 GHSA-9g8h-pjm4-q92p
VCID-hknm-hhvz-muem	In OpenCV 3.3.1, a heap-based buffer over-read exists in the function cv::HdrDecoder::checkSignature in modules/imgcodecs/src/grfmt_hdr.cpp.	CVE-2017-18009 GHSA-83rh-hx5x-q9p5
VCID-w2pd-76sg-rkbw	In OpenCV 3.3.1, an assertion failure happens in cv::RBaseStream::setPos in modules/imgcodecs/src/bitstrm.cpp because of an incorrect integer cast.	CVE-2018-5269 GHSA-89rj-5ggj-3p9p

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-13T06:24:42.505178+00:00	GHSA Importer	Fixing	VCID-awue-gu67-9uhe	https://github.com/advisories/GHSA-9g8h-pjm4-q92p	38.6.0
2026-06-13T06:24:40.950217+00:00	GHSA Importer	Fixing	VCID-w2pd-76sg-rkbw	https://github.com/advisories/GHSA-89rj-5ggj-3p9p	38.6.0
2026-06-13T06:24:40.848073+00:00	GHSA Importer	Fixing	VCID-hknm-hhvz-muem	https://github.com/advisories/GHSA-83rh-hx5x-q9p5	38.6.0
2026-06-12T19:38:25.555734+00:00	GitLab Importer	Affected by	VCID-4emq-jp96-xubx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/GHSA-qr4w-53vh-m672.yml	38.6.0
2026-06-12T17:49:25.286607+00:00	GitLab Importer	Affected by	VCID-2zx5-u81r-xfar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2019-19624.yml	38.6.0
2026-06-12T17:49:19.136967+00:00	GitLab Importer	Affected by	VCID-jr8q-eaze-8yff	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2019-5064.yml	38.6.0
2026-06-12T17:49:18.570428+00:00	GitLab Importer	Affected by	VCID-7g3v-p4h5-pufg	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2019-14491.yml	38.6.0
2026-06-12T17:49:16.703112+00:00	GitLab Importer	Affected by	VCID-m2dt-hqz3-mfg5	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2019-14493.yml	38.6.0
2026-06-12T17:49:14.713626+00:00	GitLab Importer	Affected by	VCID-2ds9-7qg8-b3aa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2019-16249.yml	38.6.0
2026-06-12T17:49:13.135243+00:00	GitLab Importer	Affected by	VCID-nvqy-vqv1-1ycn	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2019-9423.yml	38.6.0
2026-06-12T17:49:12.645295+00:00	GitLab Importer	Affected by	VCID-tfqy-zten-x7fa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2019-15939.yml	38.6.0
2026-06-12T17:49:09.734438+00:00	GitLab Importer	Affected by	VCID-x7d2-e2cd-v3c9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2019-14492.yml	38.6.0
2026-06-12T17:49:04.478681+00:00	GitLab Importer	Affected by	VCID-czcn-zgmz-b7fq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2019-5063.yml	38.6.0
2026-06-12T15:42:33.251874+00:00	GitLab Importer	Fixing	VCID-hknm-hhvz-muem	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2017-18009.yml	38.6.0
2026-06-12T15:42:30.872908+00:00	GitLab Importer	Fixing	VCID-awue-gu67-9uhe	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2018-5268.yml	38.6.0
2026-06-12T15:42:30.159174+00:00	GitLab Importer	Fixing	VCID-w2pd-76sg-rkbw	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2018-5269.yml	38.6.0
2026-06-12T08:02:50.695893+00:00	GithubOSV Importer	Fixing	VCID-w2pd-76sg-rkbw	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/10/GHSA-89rj-5ggj-3p9p/GHSA-89rj-5ggj-3p9p.json	38.6.0
2026-06-12T08:02:46.198486+00:00	GithubOSV Importer	Fixing	VCID-awue-gu67-9uhe	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/10/GHSA-9g8h-pjm4-q92p/GHSA-9g8h-pjm4-q92p.json	38.6.0
2026-06-12T08:02:43.862762+00:00	GithubOSV Importer	Fixing	VCID-hknm-hhvz-muem	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/10/GHSA-83rh-hx5x-q9p5/GHSA-83rh-hx5x-q9p5.json	38.6.0
2026-06-12T04:22:33.746271+00:00	Pypa Importer	Affected by	VCID-4sam-7au7-kyda	https://github.com/pypa/advisory-database/blob/main/vulns/opencv-python/PYSEC-2023-183.yaml	38.6.0
2026-06-11T21:00:44.767652+00:00	PyPI Importer	Affected by	VCID-4sam-7au7-kyda	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0