CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2026/04/01 9:48 p.m.•2 views

EUVD-2026-18044

AIOHTTP has HTTP response splitting via \r in reason phrase...

6.9CVSS5.9AI score0.00053EPSS

Exploits0References4

NVD•added 2026/04/01 9:16 p.m.•2 views

CVE-2026-34515

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, on Windows the static resource handler may expose information about a NTLMv2 remote path. This issue has been patched in version 3.13.4...

8.7CVSS0.00021EPSS

Exploits0References3

Debian CVE•added 2026/04/01 8:26 p.m.•3 views

CVE-2026-34519

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an attacker who controls the reason parameter when creating a Response may be able to inject extra headers or similar exploits. This issue has been patched in version 3.13.4...

6.9CVSS5.2AI score0.00053EPSS

Exploits0

CVE•added 2026/04/01 8:26 p.m.•7 views

CVE-2026-34519

CVE-2026-34519 affects the AIOHTTP library (asyncio-based HTTP client/server for Python). The issue occurs before version 3.13.4 where an attacker controlling the reason parameter when creating a Response can inject extra headers or similar exploits due to header injection in the reason phrase. T...

6.9CVSS5.7AI score0.00053EPSS

Exploits0References3Affected Software1

Debian CVE•added 2026/04/01 8:10 p.m.•3 views

CVE-2026-34515

8.7CVSS5.4AI score0.00021EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by