{"id":"ROOT-APP-PYPI-CVE-2026-26007","summary":"CVE-2026-26007 in rootio-cryptography - Patched by Root","details":"Root has patched CVE-2026-26007 in the rootio-cryptography package for Root:PyPI. Multiple fixed versions available.","modified":"2026-05-25T13:48:41.301196314Z","published":"2026-05-25T10:09:30Z","upstream":["CVE-2026-26007"],"database_specific":{"source":"Root","severity":"MEDIUM","distro":"pypi","distro_version":""},"affected":[{"package":{"name":"rootio-cryptography","ecosystem":"Root:PyPI"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"45.0.5+root.io.1"},{"fixed":"41.0.7+root.io.2"},{"fixed":"46.0.4+root.io.1"},{"fixed":"43.0.1+root.io.1"},{"fixed":"44.0.1+root.io.1"},{"fixed":"42.0.5+root.io.1"},{"fixed":"45.0.4+root.io.1"},{"fixed":"42.0.8+root.io.1"},{"fixed":"46.0.4+root.io.2"},{"fixed":"45.0.5+root.io.2"},{"fixed":"45.0.5+root.io.3"},{"fixed":"46.0.3+root.io.1"},{"fixed":"46.0.3+root.io.2"},{"fixed":"46.0.3+root.io.3"},{"fixed":"42.0.8+root.io.2"},{"fixed":"42.0.8+root.io.3"},{"fixed":"42.0.8+root.io.4"},{"fixed":"42.0.8+root.io.6"},{"fixed":"42.0.8+root.io.7"},{"fixed":"45.0.5+root.io.4"},{"fixed":"42.0.8+root.io.9"},{"fixed":"42.0.8+root.io.10"},{"fixed":"43.0.1+root.io.2"}]}],"database_specific":{"source":"https://api.root.io/external/osv/ROOT-APP-PYPI-CVE-2026-26007.json","upstream_version":"43.0.1","root_patch_version":"root.io.2","all_fixed_versions":["45.0.5+root.io.1","41.0.7+root.io.2","46.0.4+root.io.1","43.0.1+root.io.1","44.0.1+root.io.1","42.0.5+root.io.1","45.0.4+root.io.1","42.0.8+root.io.1","46.0.4+root.io.2","45.0.5+root.io.2","45.0.5+root.io.3","46.0.3+root.io.1","46.0.3+root.io.2","46.0.3+root.io.3","42.0.8+root.io.2","42.0.8+root.io.3","42.0.8+root.io.4","42.0.8+root.io.6","42.0.8+root.io.7","45.0.5+root.io.4","42.0.8+root.io.9","42.0.8+root.io.10","43.0.1+root.io.2"],"total_fixed_versions":23,"root_patched":true}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}]}