Lucene search
K

145 matches found

OSV
OSV
added 2026/01/05 11:15 p.m.3 views

DEBIAN-CVE-2025-69224

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below of the Python HTTP parser may allow a request smuggling attack with the presence of non-ASCII characters. If a pure Python version of AIOHTTP is installed i.e. without the usual C extensions ...

6.5CVSS7.6AI score0.00213EPSS
Exploits0References1
NVD
NVD
added 2026/01/05 11:15 p.m.5 views

CVE-2025-69224

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below of the Python HTTP parser may allow a request smuggling attack with the presence of non-ASCII characters. If a pure Python version of AIOHTTP is installed i.e. without the usual C extensions ...

6.5CVSS0.00213EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/01/05 11:15 p.m.6 views

CVE-2025-69224

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below of the Python HTTP parser may allow a request smuggling attack with the presence of non-ASCII characters. If a pure Python version of AIOHTTP is installed i.e. without the usual C extensions ...

6.5CVSS7.2AI score0.00213EPSS
Exploits0References5
OSV
OSV
added 2026/01/05 11:15 p.m.3 views

UBUNTU-CVE-2025-69224

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below of the Python HTTP parser may allow a request smuggling attack with the presence of non-ASCII characters. If a pure Python version of AIOHTTP is installed i.e. without the usual C extensions ...

6.5CVSS6.3AI score0.00213EPSS
Exploits0References6
OSV
OSV
added 2026/01/05 10:35 p.m.5 views

CVE-2025-69224 AIOHTTP's Unicode processing of header values could cause parsing discrepancies

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below of the Python HTTP parser may allow a request smuggling attack with the presence of non-ASCII characters. If a pure Python version of AIOHTTP is installed i.e. without the usual C extensions ...

6.3CVSS6.9AI score0.00213EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2026/01/05 10:35 p.m.3 views

CVE-2025-69224

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below of the Python HTTP parser may allow a request smuggling attack with the presence of non-ASCII characters. If a pure Python version of AIOHTTP is installed i.e. without the usual C extensions ...

6.5CVSS7AI score0.00213EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/01/05 10:35 p.m.4 views

CVE-2025-69224

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below of the Python HTTP parser may allow a request smuggling attack with the presence of non-ASCII characters. If a pure Python version of AIOHTTP is installed i.e. without the usual C extensions ...

6.5CVSS7.6AI score0.00213EPSS
Exploits0
CNNVD
CNNVD
added 2026/01/05 12:0 a.m.4 views

aiohttp 环境问题漏洞

aiohttp is an open source asynchronous HTTP client/server framework for asyncio and Python from aio-libs open source. An environment issue vulnerability exists in aiohttp 3.13.2 and earlier versions, which stems from the presence of non-ASCII characters that could allow a request entrapment attac...

6.5CVSS6.4AI score0.00213EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2011-2054

Malware in sbrugna...

4.9CVSS6.4AI score0.00269EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-2190

Malware in sbrugna...

5CVSS5.3AI score0.02171EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-4426

Malware in sbrugna...

4.3CVSS6AI score0.02098EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-2754

Malware in sbrugna...

5.3CVSS6.9AI score0.04082EPSS
Exploits0References19
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-1272

Malware in sbrugna...

5CVSS6AI score0.02481EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5959

Malware in sbrugna...

5.4CVSS5.3AI score0.02084EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2006-3295

Malware in sbrugna...

5CVSS6.4AI score0.02937EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-0480

Malware in sbrugna...

4CVSS6.1AI score0.01013EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2025/06/12 10:43 p.m.8 views

CVE-2025-41234

A mishandling of non-ASCII characters in headers flaw was found in the Spring framework. This flaw allows an attacker to tamper with a file download under specific conditions when content names are user-supplied, and the victim then downloads unintended content. Mitigation Mitigation for this iss...

6.5CVSS6AI score0.00533EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/22 1:17 a.m.10 views

CVE-2011-2060

The platform-sw component on Cisco Adaptive Security Appliances ASA 5500 series devices with software 8.2 before 8.25.3, 8.3 before 8.32.20, and 8.4 before 8.42.1 does not properly handle non-ASCII characters in an interface description, which allows local users to cause a denial of service reloa...

4.9CVSS6.6AI score0.00269EPSS
Exploits0References1
OSV
OSV
added 2024/10/02 2:16 p.m.12 views

CVE-2024-47611 XZ Utils on Microsoft Windows platform are vulnerable to argument injection

XZ Utils provide a general-purpose data-compression library plus command-line tools. When built for native Windows MinGW-w64 or MSVC, the command line tools from XZ Utils 5.6.2 and older have a command line argument injection vulnerability. If a command line contains Unicode characters for exampl...

6.3CVSS6AI score0.00725EPSS
Exploits0References4
Schneier on Security
Schneier on Security
added 2024/09/27 11:1 a.m.10 views

NIST Recommends Some Common-Sense Password Rules

NIST's second draft of its "SP 800-63-4"--its digital identify guidelines--finally contains some really good rules about passwords: The following requirements apply to passwords: 1. lVerifiers and CSPs SHALL require passwords to be a minimum of eight characters in length and SHOULD require...

7.9AI score
Exploits0
Rows per page
Query Builder