8.8
CVSS V3
Status
Justification
Impact
Vulnerability is detected because pip vendors some packages but only includes the pkg_resources, making this non-vulnerable. https://github.com/pypa/pip/tree/30807c4d9e62e0ba65ad80d441dba55e76ddf5e4/src/pip/_vendor\#modifications
Status