Known Vulnerabilities for products from Aiohttp
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Aiohttp".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-54280 json | Not Provided | 2026-06-22 | 2026-06-22 | |
| CVE-2026-54279 json | Not Provided | 2026-06-22 | 2026-06-22 | |
| CVE-2026-54278 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, during cleanup it is possibl... | Not Provided | 2026-06-22 | 2026-06-26 |
| CVE-2026-54277 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, it is possible to bypass the... | Not Provided | 2026-06-22 | 2026-06-30 |
| CVE-2026-54276 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, DigestAuthMiddleware can sen... | Not Provided | 2026-06-22 | 2026-06-30 |
| CVE-2026-54275 json | Not Provided | 2026-06-22 | 2026-06-22 | |
| CVE-2026-54274 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, if an attacker sends large i... | Not Provided | 2026-06-22 | 2026-06-26 |
| CVE-2026-54273 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, no limit was present on the ... | Not Provided | 2026-06-22 | 2026-06-26 |
| CVE-2026-54008 json | Not Provided | 2026-06-23 | 2026-06-24 | |
| CVE-2026-50269 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.0, attacker-controlled input in... | Not Provided | 2026-06-22 | 2026-06-26 |
| CVE-2026-47265 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.14.0, cookies set with the... | Not Provided | 2026-06-02 | 2026-06-05 |
| CVE-2026-34993 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.14.0, using ``CookieJar.lo... | Not Provided | 2026-06-02 | 2026-07-10 |
| CVE-2026-34525 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, multiple Host header... | Not Provided | 2026-04-01 | 2026-04-16 |
| CVE-2026-34520 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, the C parser (the de... | Not Provided | 2026-04-01 | 2026-04-16 |
| CVE-2026-34519 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an attacker who cont... | Not Provided | 2026-04-01 | 2026-04-16 |
| CVE-2026-34518 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, when following redir... | Not Provided | 2026-04-01 | 2026-04-16 |
| CVE-2026-22815 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, insufficient restric... | Not Provided | 2026-04-01 | 2026-04-06 |
| CVE-2025-69223 json | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below allow a zip bomb to... | Not Provided | 2026-01-05 | 2026-07-10 |
| CVE-2024-23334 json | 7.5 - HIGH | 2024-01-29 | 2024-02-05 | |
| CVE-2023-49082 json | aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Improper validation makes it possible for an ... | Not Provided | 2023-11-29 | 2026-06-23 |