Lucene search
+L

5 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/03 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-34517

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, for some multipart form fields, aiohttp read the entire...

6.9CVSS5.4AI score0.00384EPSS
Exploits0References3
OSV
OSV
added 2026/04/01 9:17 p.m.2 views

DEBIAN-CVE-2026-34519

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an attacker who controls the reason parameter when creating a Response may be able to inject extra headers or similar exploits. This issue has been patched in version 3.13.4...

5.3CVSS5.2AI score0.00292EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/04/01 8:27 p.m.6 views

CVE-2026-34520

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, the C parser the default for most installs accepted null bytes and control characters in response headers. This issue has been patched in version 3.13.4...

9.1CVSS5.3AI score0.00461EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/01 8:27 p.m.3 views

CVE-2026-34520

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, the C parser the default for most installs accepted null bytes and control characters in response headers. This issue has been patched in version 3.13.4...

6.9CVSS5.8AI score0.00461EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/09/16 2:15 a.m.2 views

DEBIAN-CVE-2024-46958

In Nextcloud Desktop Client 3.13.1 through 3.13.3 on Linux, synchronized files between the server and client may become world writable or world readable. This is fixed in 3.13.4...

9.1CVSS5.3AI score0.00555EPSS
Exploits0References1
Rows per page
Query Builder