1131 matches found
EUVD-2025-21384
Malicious code in bioql PyPI...
EUVD-2024-2609
Malicious code in bioql PyPI...
EUVD-2023-0006
Malicious code in bioql PyPI...
EUVD-2024-0002
Malicious code in bioql PyPI...
EUVD-2023-0003
Malicious code in bioql PyPI...
EUVD-2023-0005
Malicious code in bioql PyPI...
EUVD-2024-1143
Malicious code in bioql PyPI...
SUSE SLES15 Security Update : python-aiohttp (SUSE-SU-2025:03201-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:03201-1 advisory. - CVE-2025-53643: request smuggling vulnerability due to incorrect parsing trailer sections of an HTTP request bsc1246517. Tenable has...
Security update for python-aiohttp
This update for python-aiohttp fixes the following issues: CVE-2025-53643: request smuggling vulnerability due to incorrect parsing trailer sections of an HTTP request bsc1246517. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate ...
SUSE-SU-2025:03201-1 Security update for python-aiohttp
This update for python-aiohttp fixes the following issues: - CVE-2025-53643: request smuggling vulnerability due to incorrect parsing trailer sections of an HTTP request bsc1246517...
AIOHTTP < 3.9.2 Directory Traversal
AIOHTTP versions prior to 3.9.2 are vulnerable to a directory traversal allowing an unauthenticated attacker to access sensitive files via a specially crafted request. No source data...
openSUSE Security Advisory (SUSE-SU-2025:03057-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-aiohttp (SUSE-SU-2025:03057-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:03057-1 advisory. - CVE-2025-53643: Fixed request smuggling due to incorrect parsing of chunked trailer section bsc1246517...
aiohttp's HTTP parser (the python one, not llhttp) still overly lenient about separators
...
Denial of service when trying to parse malformed POST requests in aiohttp
...
Request smuggling in aiohttp
...
SUSE-SU-2025:03057-1 Security update for python-aiohttp
This update for python-aiohttp fixes the following issues: - CVE-2025-53643: Fixed request smuggling due to incorrect parsing of chunked trailer section bsc1246517...
Linux Distros Unpatched Vulnerability : CVE-2023-47627
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. The HTTP parser in AIOHTTP has numerous problems with header parsing, which coul...
Linux Distros Unpatched Vulnerability : CVE-2023-47641
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Affected versions of aiohttp have a security vulnerability regarding the...
Linux Distros Unpatched Vulnerability : CVE-2023-49081
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Improper validation made it possible for an attacker to modify the HTTP request...