{"id":"ECHO-4895-da6a-8b1f","upstream":["CVE-2026-42311","GHSA-pwv6-vv43-88gr"],"severity":[],"modified":"2026-05-07T15:38:45.583Z","affected":[{"package":{"ecosystem":"Echo:PyPi","name":"pillow","purl":"pkg:pypi/pillow"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12.1.1+echo.1"}]}]}],"references":[{"type":"WEB","url":"https://advisory.echohq.com/cve/CVE-2026-42311"},{"type":"WEB","url":"https://github.com/advisories/GHSA-pwv6-vv43-88gr"}]}