Multiple Vulnerabilities in python-pillow on Red Hat Enterprise Linux Allow Denial of Service and Information Disclosure

72% confidence

Description

Multiple vulnerabilities exist in the python-pillow package on Red Hat Enterprise Linux that can be exploited by a remote, anonymous attacker to cause a denial of service and disclose confidential information.

Affected Products

Vendor	Product	Versions
red hat	python-pillow	—

Related News (1 articles)

Tier B

BSI Advisories5h ago

[UPDATE] [hoch] Red Hat Enterprise Linux (python-pillow): Mehrere Schwachstellen

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

PublishedMar 31, 2026

Last enriched5h ago

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-1961EXP

Forman: foreman: remote code execution via command injection in websocket proxy

Trending: 60

CRITICALCVE-2026-5121

Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing

Trending: 55

HIGHCVE-2026-28369EXP

Undertow: undertow: request smuggling via malformed http request headers

Trending: 54

NONECVE-2026-28367EXP

Undertow: undertow: request smuggling via `\r\r\r` as a header block terminator

Trending: 48

NONECVE-2026-5165EXP

Virtio-win: virtio-win: memory corruption via use-after-free in virtio blk device reset

Trending: 39

Pin to Dashboard

Verification

State: reported

Confidence: 72%

Vulnerability Timeline

CVE Published

Mar 31, 2026

Discovered by ZDM

Mar 31, 2026