9 matches found
SUSE SLES15 Security Update : python-aiohttp (SUSE-SU-2026:0859-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0859-1 advisory. - CVE-2025-69228: Fixed denial of service through large payloads bsc1256022. - CVE-2025-69226: Fixed brute-force leak of internal...
SUSE: Security Advisory (SUSE-SU-2026:0858-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
python311-aiohttp-3.13.3-1.1 on GA media (moderate)
python311-aiohttp-3.13.3-1.1 on GA media Announcement ID: openSUSE-SU-2026:10025-1 Rating: moderate Cross-References: CVE-2025-69223 CVE-2025-69224 CVE-2025-69225 CVE-2025-69226 CVE-2025-69227 CVE-2025-69228 CVE-2025-69229 CVE-2025-69230 CVSS scores: CVE-2025-69223 SUSE : 7.5...
CVE-2025-69225 vulnerabilities
Vulnerabilities for packages: checkov, dask-kubernetes, kserve, py3-vllm-cuda-12.4, kubeflow-pipelines-visualization-server, airflow, awx, request-1276, py3-cassandra-medusa, gitlab-cng, apache-beam-python-3.11-sdk, py3.13-scanner-test-libraries-aiohttp, open-webui, authentik...
aiohttp < 3.13.3 Multiple Vulnerabilities - Windows
aiohttp is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:aio-libsproject:aiohttp";...
aiohttp < 3.13.3 Multiple Vulnerabilities - Linux
aiohttp is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:aio-libsproject:aiohttp";...
Linux Distros Unpatched Vulnerability : CVE-2025-69225
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below contain parser logic which allows non-ASCII decimals t...
CVE-2025-69225 AIOHTTP Regex Mismatch Allows Unicode in ASCII-Only Protocol Fields
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below contain parser logic which allows non-ASCII decimals to be present in the Range header. There is no known impact, but there is the possibility that there's a method to exploit a request...
a-mailx (=0.1.0), aba-cli-scrapper (>=0.1.1 <=0.1.6) +1244 more potentially affected by CVE-2025-69225 via aiohttp (>=0.13.1 <=3.13.2)
aiohttp PYPI version =0.13.1, =0.1.1, =0.1.0b0, =1.1.0, =1.0.1, =0.0.0, =0.0.2, =4.8.2, =0.0.3, =0.1.3, =0.4.0, =56.0.0, =0.1.0, =0.1.31, =0.1.37 and more Source cves: CVE-2025-69225 Source advisory: OSV:GHSA-MQQC-3GQH-H2X8...