Vulnerabilities on Python 3.13.5 used by NCPA 3.2.0
Posted: Fri Oct 31, 2025 3:38 am
Hi Folks,
Microsoft Defender is flagging all our servers that have NCPA 3.2.0 installed as vulnerable to a couple of CVEs discovered on Python 3.15.5.
I had a look on the changelog of 3.2.1 and it only mention about bug fixes - Nothing in relation to security.
I just need to confirm if there is any plans to patch that Python version on the next release? Since my company is very strictly regulated we need the information from the "vendor" to be able to risk accept it.
Thank you very much for your help on this,
Arthur.
Microsoft Defender is flagging all our servers that have NCPA 3.2.0 installed as vulnerable to a couple of CVEs discovered on Python 3.15.5.
I had a look on the changelog of 3.2.1 and it only mention about bug fixes - Nothing in relation to security.
I just need to confirm if there is any plans to patch that Python version on the next release? Since my company is very strictly regulated we need the information from the "vendor" to be able to risk accept it.
Thank you very much for your help on this,
Arthur.
