Lucene search
K

214 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-0003

Malicious code in bioql PyPI...

7.5CVSS7AI score0.01422EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-0005

Malicious code in bioql PyPI...

6.5CVSS5.5AI score0.00827EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-0006

Malicious code in bioql PyPI...

7.2CVSS6.3AI score0.00874EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-0002

Malicious code in bioql PyPI...

6.5CVSS6.2AI score0.0102EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-49081

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Improper validation made it possible for an attacker to modify the HTTP request...

7.2CVSS6.1AI score0.00874EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-23334

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. When using aiohttp as a web server and configuring static routes, it is necessar...

7.5CVSS6.9AI score0.76875EPSS
Exploits15References2
OpenVAS
OpenVAS
added 2025/07/18 12:0 a.m.1 views

aiohttp < 3.12.14 HTTP Request Smuggling Vulnerability - Linux

aiohttp is prone to an HTTP request smuggling vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS6.6AI score0.00297EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/07/18 12:0 a.m.9 views

aioHTTP < 3.12.14 Request Smuggling (CVE-2025-53643)

The version of aioHTTP installed on the remote host is prior to 3.12.14. It is, therefore, affected by a request smuggling vulnerability: - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request...

7.5CVSS6.9AI score0.00297EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/07/17 12:0 a.m.4 views

aiohttp < 3.12.14 HTTP Request Smuggling Vulnerability - Windows

aiohttp is prone to an HTTP request smuggling vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS6.3AI score0.00297EPSS
Exploits0References1
NVD
NVD
added 2025/07/14 9:15 p.m.7 views

CVE-2025-53643

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed i.e. without the...

7.5CVSS0.00297EPSS
Exploits0References2
OSV
OSV
added 2025/07/14 9:15 p.m.3 views

DEBIAN-CVE-2025-53643

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed i.e. without the...

7.5CVSS6.6AI score0.00297EPSS
Exploits0References1
OSV
OSV
added 2025/07/14 9:15 p.m.6 views

AZL-65256 CVE-2025-53643 affecting package python-aiohttp 3.6.2-3

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed i.e. without the...

7.5CVSS6.7AI score0.00297EPSS
Exploits0References1
OSV
OSV
added 2025/07/14 9:15 p.m.4 views

UBUNTU-CVE-2025-53643

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed i.e. without the...

7.5CVSS7.1AI score0.00297EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/14 8:17 p.m.8 views

CVE-2025-53643 AIOHTTP is vulnerable to HTTP Request/Response Smuggling through incorrect parsing of chunked trailer sections

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed i.e. without the...

6.3CVSS0.00297EPSS
Exploits0References2
OSV
OSV
added 2025/07/14 8:17 p.m.6 views

CVE-2025-53643 AIOHTTP is vulnerable to HTTP Request/Response Smuggling through incorrect parsing of chunked trailer sections

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed i.e. without the...

6.3CVSS7.4AI score0.00297EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/07/14 8:17 p.m.4 views

CVE-2025-53643 AIOHTTP is vulnerable to HTTP Request/Response Smuggling through incorrect parsing of chunked trailer sections

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed i.e. without the...

6.3CVSS6.5AI score0.00297EPSS
Exploits0References2
CVE
CVE
added 2025/07/14 8:17 p.m.121 views

CVE-2025-53643

CVE-2025-53643 (aiohttp) : Prior to 3.12.14, the Python parser is vulnerable to HTTP request smuggling due to not parsing trailer sections. If a pure-Python build (no C extensions) or AIOHTTP_NO_EXTENSIONS is used, an attacker may smuggle requests to bypass certain firewalls/proxy protections. Th...

7.5CVSS7.3AI score0.00297EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2025/07/14 8:17 p.m.4 views

CVE-2025-53643

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed i.e. without the...

7.5CVSS6.6AI score0.00297EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/07/14 7:33 p.m.4 views

aba-cli-scrapper (>=0.1.1 <=0.1.6), academic-metrics (>=0.1.0b0 <=1.0.99) +1034 more potentially affected by CVE-2025-53643 via aiohttp (>=0.13.1 <=3.12.13)

aiohttp PYPI version =0.13.1, =0.1.1, =0.1.0b0, =1.1.0, =0.0.0, =0.0.2, =4.8.2, =0.0.3, =56.0.0, =0.1.0, =0.1.31, =1.0.1, =1.2.0 - ahttp-client =1.0.3 and more Source cves: CVE-2025-53643 Source advisory: OSV:GHSA-9548-QRRJ-X5PJ...

7.5CVSS6.7AI score0.00297EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/07/14 7:33 p.m.7 views

aba-cli-scrapper (>=0.1.1 <=0.1.6), academic-metrics (>=0.1.0b0 <=1.0.99) +905 more potentially affected by CVE-2025-53643 via aiohttp (>=3.0.0b0 <=3.12.13)

aiohttp PYPI version =3.0.0b0, =0.1.1, =0.1.0b0, =1.1.0, =0.0.0, =0.0.2, =4.8.2, =0.0.3, =56.0.0, =0.1.0, =0.1.31, =1.0.1, =1.2.0 - ahttp-client =1.0.3 and more Source cves: CVE-2025-53643 Source advisory: SNYK:PYTHON-AIOHTTP-10742466...

7.5CVSS6.7AI score0.00297EPSS
Exploits0
Rows per page
Query Builder