AI Threat Alert
Label Studio Vulnerabilities
pip AI Tools 39
Risk Score
7
Total CVEs
0
Critical
pip
Ecosystem
Jan 12, 2026
Last CVE
71%
Patch Rate
145d
Avg Time to Patch
27,330 stars
3,530 forks
884 issues
1 dependents
Last push May 15, 2026
View on GitHub
Known Vulnerabilities (7 total, page 1 of 1)
Severity CVE ID Summary CVSS Published
MEDIUM CVE-2022-36551 Label Studio: SSRF + file read, self-reg bypass 6.5 Oct 4, 2022 HIGH CVE-2025-25295 Label Studio SDK: path traversal leaks server filesystem -- Feb 14, 2025 MEDIUM CVE-2025-25296 Label Studio: reflected XSS via label_config param 6.1 Feb 14, 2025 HIGH CVE-2025-25297 Label Studio: SSRF via S3 endpoint exposes internal services 8.6 Feb 14, 2025 HIGH CVE-2025-47783 Label Studio: XSS enables unauthorized actions via CSRF -- May 15, 2025 HIGH CVE-2026-22033 label-studio: XSS enables session hijacking -- Jan 12, 2026 HIGH CVE-2025-5173 label-studio-ml: PyTorch .pt deserialization RCE in YOLO loader 7.8 May 26, 2025 Monitor Label Studio in your stack
Get instant alerts when new vulnerabilities affect Label Studio. CISO analysis, ATLAS technique mappings, and compliance reports included.
Start Monitoring