A use-after-free issue was discovered in Py_FindObjects() function in SciPy versions prior to 1.8.0. NOTE: the vendor and discoverer indicate that this is not a security issue.
CVSS Score
9.8
EPSS Score
0.003
Published
2023-07-06
A refcounting issue which leads to potential memory leak was discovered in scipy commit 8627df31ab in Py_FindObjects() function. Note: This is disputed as a bug and not a vulnerability. SciPy is not designed to be exposed to untrusted users or data directly.
CVSS Score
5.5
EPSS Score
0.001
Published
2023-07-05
The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories.
CVSS Score
7.8
EPSS Score
0.001
Published
2019-11-04