CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

5.3CVSS7.5AI score0.00042EPSS

DEBIAN-CVE-2025-69229

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 and below, handling of chunked messages can result in excessive blocking CPU usage when receiving a large number of chunks. If an application makes use of the request.read method in an endpoint, it...

6.9CVSS5.7AI score0.00041EPSS

AZL-73500 CVE-2025-69225 affecting package python-aiohttp 3.6.2-3

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below contain parser logic which allows non-ASCII decimals to be present in the Range header. There is no known impact, but there is the possibility that there's a method to exploit a request...

OSV•added 2026/01/06 12:15 a.m.•3 views

AZL-73523 CVE-2025-69225 affecting package python-aiohttp 3.6.2-3

6.9CVSS5.7AI score0.00041EPSS

NVD•added 2026/01/06 12:15 a.m.•2 views

CVE-2025-69225

6.9CVSS0.00041EPSS

Exploits0References2

OSV•added 2026/01/06 12:15 a.m.•3 views

DEBIAN-CVE-2025-69225

5.3CVSS7.5AI score0.00041EPSS

OSV•added 2026/01/06 12:15 a.m.•1 views

UBUNTU-CVE-2025-69227

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below allow for an infinite loop to occur when assert statements are bypassed, resulting in a DoS attack when processing a POST body. If optimizations are enabled -O or PYTHONOPTIMIZE=1, and the...

8.7CVSS6.4AI score0.00025EPSS

Exploits0References5

6.9CVSS6.3AI score0.00041EPSS

UBUNTU-CVE-2025-69225

Exploits0References5

OSV•added 2026/01/06 12:15 a.m.•0 views

UBUNTU-CVE-2025-69229

8.7CVSS6.3AI score0.00042EPSS

Exploits0References6

6.9CVSS6.3AI score0.00011EPSS

UBUNTU-CVE-2025-69230

Exploits0References4

OSV•added 2026/01/06 12:15 a.m.•0 views

UBUNTU-CVE-2025-69228

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below allow a request to be crafted in such a way that an AIOHTTP server's memory fills up uncontrollably during processing. If an application includes a handler that uses the Request.post method, ...

8.7CVSS6.2AI score0.00069EPSS

Exploits0References5

CNNVD•added 2026/01/06 12:0 a.m.•1 views

aiohttp 环境问题漏洞

aiohttp is an open source asynchronous HTTP client/server framework for asyncio and Python from aio-libs. An environment issue vulnerability exists in aiohttp 3.13.2 and earlier versions, which stems from the presence of non-ASCII decimal numbers allowed in the Range header, which could lead to a...

6.9CVSS6.3AI score0.00041EPSS

CNNVD•added 2026/01/06 12:0 a.m.•1 views

aiohttp 安全漏洞

aiohttp is an open source aio-libs open source asynchronous HTTP client/server framework for asyncio and Python. A security vulnerability exists in aiohttp 3.13.2 and earlier versions, which stems from an infinite loop that may result from bypassing an assertion statement, possibly leading to a...

8.7CVSS6.5AI score0.00025EPSS

Tenable Nessus•added 2026/01/06 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2025-69224

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below of the Python HTTP parser may allow a request smugglin...

6.5CVSS7.3AI score0.00047EPSS

Tenable Nessus•added 2026/01/06 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-69228

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below allow a request to be crafted in such a way that an...

8.7CVSS7.2AI score0.00069EPSS

UbuntuCve•added 2026/01/06 12:0 a.m.•2 views

CVE-2025-69230

6.9CVSS7AI score0.00011EPSS

Tenable Nessus•added 2026/01/06 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-69226

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below enable an attacker to ascertain the existence of...

6.3CVSS7.2AI score0.0007EPSS

CNNVD•added 2026/01/06 12:0 a.m.•1 views

aiohttp 安全漏洞

aiohttp is an open source asynchronous HTTP client/server framework for asyncio and Python from aio-libs open source. A security vulnerability exists in aiohttp 3.13.2 and earlier versions, which stems from reading multiple invalid cookies may result in a log storm that could lead to a denial of...

6.9CVSS6.2AI score0.00011EPSS

Exploits0References2

CNNVD•added 2026/01/06 12:0 a.m.•2 views

aiohttp 安全漏洞

aiohttp is an open source asynchronous HTTP client/server framework for asyncio and Python from aio-libs open source. A security vulnerability exists in aiohttp 3.13.2 and earlier versions, which stems from a potential excessive CPU blocking when processing a large number of chunked messages, whi...

8.7CVSS6.3AI score0.00042EPSS