{"id":"ECHO-784c-565e-18bc","upstream":["CVE-2026-42308","GHSA-wjx4-4jcj-g98j"],"severity":[],"modified":"2026-05-07T15:38:45.583Z","affected":[{"package":{"ecosystem":"Echo:PyPi","name":"pillow","purl":"pkg:pypi/pillow"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12.1.1+echo.1"}]}]}],"references":[{"type":"WEB","url":"https://advisory.echohq.com/cve/CVE-2026-42308"},{"type":"WEB","url":"https://github.com/advisories/GHSA-wjx4-4jcj-g98j"}]}