CVE-2025-68463
CVSS Score
4.9
EPSS Score
0.1%
EPSS Percentile
21th
Bio.Entrez in Biopython through 186 allows doctype XXE.
| CWE | CWE-611 |
| Vendor | biopython |
| Product | biopython |
| Published | Dec 18, 2025 |
| Last Updated | May 8, 2026 |
Stay Ahead of the Next One
Get instant alerts for biopython biopython
Be the first to know when new medium vulnerabilities affecting biopython biopython are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:L Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
Low
Integrity
None
Availability
Low
Affected Versions
Biopython / Biopython
0 โค 186
References
github.com: https://github.com/biopython/biopython/issues/5109 pypi.org: https://pypi.org/project/biopython/1.87/ github.com: https://github.com/biopython/biopython/blob/master/NEWS.rst github.com: https://github.com/biopython/biopython/commit/736c96f37b190732ecca9da80ad0cb9d4967214d openwall.com: http://www.openwall.com/lists/oss-security/2026/05/08/16