8 matches found
ROOT-APP-PYPI-CVE-2026-34993 CVE-2026-34993 in rootio-aiohttp - Patched by Root
Root has patched CVE-2026-34993 in the rootio-aiohttp package for Root:PyPI. Multiple fixed versions available...
CVE-2026-34993
creationtimestamp| type| source ---|---|--- 2026-07-01 15:13:45+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mplslnu2cj2t 2026-07-03 00:08:56+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppaxkjiaf2c...
OESA-2026-2562 python-aiohttp security update
Async http client/server framework asyncio. Security Fixes: Most applications using this function will be doing so with the user's own data, so this is unlikely to affect many applications.CVE-2026-34993 If a developer uses the cookies parameter on a per-request basis then sensitive data might be...
CVE-2026-34993 vulnerabilities
Vulnerabilities for packages: airflow, checkov, dask-kubernetes, kubeflow-katib, open-webui...
227checkergenerator (>=1.0.0 <=1.0.1), 5mghost-rover (>=0.0.1 <=0.0.3) +1830 more potentially affected by CVE-2026-34993 via aiohttp (>=0.13.1 <=3.13.5)
aiohttp PYPI version =0.13.1, =1.0.0, =0.0.1, =0.1.1, =0.1.0b0, =1.1.0, =1.0.1, =0.6.0, =0.0.0, =0.0.2, =0.0.3 and more Source cves: CVE-2026-34993 Source advisory: OSV:GHSA-JG22-MG44-37J8...
227checkergenerator (>=1.0.0 <=1.0.1), 5mghost-rover (>=0.0.1 <=0.0.3) +1701 more potentially affected by CVE-2026-34993 via aiohttp (>=3.0.0b0 <=3.13.5)
aiohttp PYPI version =3.0.0b0, =1.0.0, =0.0.1, =0.1.1, =0.1.0b0, =1.1.0, =1.0.1, =0.6.0, =0.0.0, =0.0.2, =0.0.3 and more Source cves: CVE-2026-34993 Source advisory: SNYK:PYTHON-AIOHTTP-17146576...
Linux Distros Unpatched Vulnerability : CVE-2026-34993
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.14.0, using CookieJar.load with untrusted input may allow...
UBUNTU-CVE-2026-34993
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.14.0, using CookieJar.load with untrusted input may allow arbitrary code execution. Most applications using this function will be doing so with the user's own data, so this is unlikely to affect man...