{"id":"ECHO-6886-9687-7159","upstream":["CVE-2026-49854","GHSA-cx3h-4qpv-8hc9"],"severity":[],"modified":"2026-07-01T13:02:54.811Z","affected":[{"package":{"ecosystem":"Echo:PyPi","name":"tornado","purl":"pkg:pypi/tornado"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.5.6"}]}]}],"references":[{"type":"WEB","url":"https://advisory.echohq.com/cve/CVE-2026-49854"}]}