Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1131 matches found

Positive Technologies
Positive Technologiesadded 2026/01/05 12:0 a.m.3 views

PT-2026-1349

Name of the Vulnerable Software and Affected Versions AIOHTTP versions 3.13.2 and below Description AIOHTTP, an asynchronous HTTP client/server framework for asyncio and Python, may be susceptible to a request smuggling attack when using versions 3.13.2 and below. This issue arises from the...

6.3CVSS6.6AI score0.00047EPSS
Exploits0References10
Positive Technologies
Positive Technologiesadded 2026/01/05 12:0 a.m.7 views

PT-2026-1357

Name of the Vulnerable Software and Affected Versions AIOHTTP versions 3.13.2 and below Description AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Accessing the cookies attribute in an application with versions 3.13.2 and below can lead to a logging storm when...

6.9CVSS6.6AI score0.00011EPSS
Exploits0References12
Positive Technologies
Positive Technologiesadded 2026/01/05 12:0 a.m.2 views

PT-2026-1353

Name of the Vulnerable Software and Affected Versions AIOHTTP versions 3.13.2 and below Description AIOHTTP, an asynchronous HTTP client/server framework for asyncio and Python, is susceptible to a denial-of-service DoS attack. When optimizations are enabled using -O or PYTHONOPTIMIZE=1, and an...

8.7CVSS6.6AI score0.00025EPSS
Exploits0References11
Positive Technologies
Positive Technologiesadded 2026/01/05 12:0 a.m.2 views

PT-2026-1348

Name of the Vulnerable Software and Affected Versions AIOHTTP versions 3.13.2 and below Description AIOHTTP, an asynchronous HTTP client/server framework for asyncio and Python, is susceptible to a denial-of-service DoS attack. An attacker can send a compressed request, specifically a zip bomb,...

7.5CVSS6.6AI score0.00055EPSS
Exploits0References10
CNNVD
CNNVDadded 2026/01/05 12:0 a.m.3 views

aiohttp 安全漏洞

aiohttp is an open source asynchronous HTTP client/server framework for asyncio and Python from aio-libs. A security vulnerability exists in aiohttp 3.13.2 and earlier versions, which stems from a zip bomb that can cause the server to run out of memory, potentially leading to a denial-of-service...

7.5CVSS6.4AI score0.00055EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/01/05 12:0 a.m.4 views

PT-2026-1355

Name of the Vulnerable Software and Affected Versions AIOHTTP versions 3.13.2 and below Description AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Handling of chunked messages in versions 3.13.2 and below can lead to excessive blocking CPU usage when receiving a...

8.7CVSS6.6AI score0.00042EPSS
Exploits0References21
IBM Security Bulletins
IBM Security Bulletinsadded 2025/12/29 7:26 a.m.4 views

Security Bulletin: Vulnerability in AIOHTTP affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.

Summary Potential vulnerability in AIOHTTP has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information. Vulnerabili...

7.5CVSS7.7AI score0.00424EPSS
Exploits0Affected Software2
RedHat Linux
RedHat Linuxadded 2025/12/09 3:8 p.m.3 views

Low: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.0.7

Red Hat OpenShift Service Mesh 3.0.7 Red Hat OpenShift Service Mesh 3.0.7, which is based on the open source Istio project, addresses a variety of problems in a microservice architecture by creating a centralized point of control in an application. Security Fixes: istio-proxyv2-rhel9: AIOHTTP is...

7.5CVSS6.7AI score0.00424EPSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/07 10:43 p.m.3 views

Malicious code in chromifypro (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4138883ad2e38b4a8a4353918126f4732db5f04107be0bddafc745ec97120b52 Packages silently decrypt content hidden in a dependency and load them as Python extension modules. In the first wave, those are copies of legitimate aiohttp a...

7AI score
Exploits0References3
OSV
OSVadded 2025/11/07 10:43 p.m.5 views

MAL-2025-191702 Malicious code in chromifypro (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4138883ad2e38b4a8a4353918126f4732db5f04107be0bddafc745ec97120b52 Packages silently decrypt content hidden in a dependency and load them as Python extension modules. In the first wave, those are copies of legitimate aiohttp a...

6.8AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/10/24 8:30 a.m.4 views

Malicious code in aiohttp-openssl (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 67b219a81e6b2dd7db78b4b223da914ee7baefd0ab056940d3af0bc3b47846a0 Packages silently decrypt content hidden in a dependency and load them as Python extension modules. In the first wave, those are copies of legitimate aiohttp a...

7AI score
Exploits0References3
OSV
OSVadded 2025/10/24 8:30 a.m.2 views

MAL-2025-191617 Malicious code in aiohttp-openssl (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 67b219a81e6b2dd7db78b4b223da914ee7baefd0ab056940d3af0bc3b47846a0 Packages silently decrypt content hidden in a dependency and load them as Python extension modules. In the first wave, those are copies of legitimate aiohttp a...

6.8AI score
Exploits0References3
OSV
OSVadded 2025/10/23 10:43 a.m.1 views

MAL-2025-191618 Malicious code in aiohttp-ssl (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 212da09ca68167bc40e86f1c838fe5aeb5a6656da5ecbbdb5d17df01b2c262d8 Packages silently decrypt content hidden in a dependency and load them as Python extension modules. In the first wave, those are copies of legitimate aiohttp a...

6.8AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/10/23 10:43 a.m.3 views

Malicious code in aiohttp-ssl (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 212da09ca68167bc40e86f1c838fe5aeb5a6656da5ecbbdb5d17df01b2c262d8 Packages silently decrypt content hidden in a dependency and load them as Python extension modules. In the first wave, those are copies of legitimate aiohttp a...

7AI score
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2018-0002

Malware in sbrugna...

6.5CVSS6.4AI score0.00217EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-0003

Malware in sbrugna...

6.1CVSS7.2AI score0.00494EPSS
Exploits0References20
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-3176

Malicious code in bioql PyPI...

8.7CVSS7.7AI score0.00421EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-1442

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00331EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-3218

Malicious code in bioql PyPI...

7.5CVSS7.2AI score0.0042EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-0004

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00239EPSS
Exploits1References12
Rows per page
Query Builder