emmett (>=2.6.0 <=2.6.3), emmett55 (>=1.0.0 <=1.1.0) potentially affected by CVE-2026-25577 via emmett-core (>=1.0.5 <=1.2.0)

emmett-core PYPI version =1.0.5, =2.6.0, =1.0.0, =1.1.0 Source cves: CVE-2026-25577 Source advisory: SNYK:PYTHON-EMMETTCORE-15264150...

Uncaught Exception

Overview emmett-core is an Emmett framework core libraries Affected versions of this package are vulnerable to Uncaught Exception in the cookies function, which does not properly handle CookieError. An attacker can cause HTTP 500 responses and crash by sending malicious Cookie headers. Remediatio...

emmett (>=2.6.0 <=2.6.3), emmett55 (>=1.0.0 <=1.1.0) potentially affected by CVE-2026-25577 via emmett-core (>=1.0.5 <=1.2.0)

emmett-core PYPI version =1.0.5, =2.6.0, =1.0.0, =1.1.0 Source cves: CVE-2026-25577 Source advisory: OSV:GHSA-X6CR-MQ53-CC76...

GHSA-X6CR-MQ53-CC76 Emmett-Core: Unhandled CookieError Exception Causing Denial of Service

Summary The cookies property in emmettcore.http.wrappers.Request does not handle CookieError exceptions when parsing malformed Cookie headers. This allows unauthenticated attackers to trigger HTTP 500 errors and cause denial of service. Details Location: emmettcore/http/wrappers/init.py line 64...

Emmett-Core 安全漏洞

Emmett-Core is a core library of the Emmett framework developed under open source by Emmett. Versions of Emmett-Core prior to 1.3.11 contained security vulnerabilities. These vulnerabilities stemmed from the failure to handle the CookieError exception when parsing malformed Cookie headers, which...