Aiohttp

Latest version: v3.11.11

Vulnerabilities (17)

CVE/PVE	Vulnerability ID	Advisory	Affected versions	Severity	Severity Score
CVE-2024-27306	70630	aiohttp is an asynchronous HTTP client/server framework for asyncio a…	<3.9.4	-	-
CVE-2024-30251	71545	Affected versions of `aiohttp` are vulnerable to an infinite loop con…	<3.9.4	-	-
CVE-2024-23829	64644	The aiohttp versions minor than 3.9. has a vulnerability that affects…	<3.9.1	MEDIUM	6.5
CVE-2023-49082	62583	Affected versions of aiohttp are vulnerable to an Improper Validation…	<3.9.0	MEDIUM	5.3
CVE-2023-49081	62582	Aiohttp 3.9.0 includes a fix for CVE-2023-49081: Improper validation …	<3.9.0	MEDIUM	5.3
CVE-2023-47627	62326	Aiohttp 3.8.6 includes a fix for CVE-2023-47627: The HTTP parser in A…	<3.8.6	HIGH	7.5
PVE-2023-61657	61657	Aiohttp 3.8.6 updates vendored copy of 'llhttp' to v9.1.3 to include…	<3.8.6	-	-
CVE-2023-37276	59725	Aiohttp 3.8.5 includes a fix for CVE-2023-37276: Sending a crafted HT…	<=3.8.4	HIGH	7.5
PVE-2021-42692	42692	Aiohttp 3.8.0 adds validation of HTTP header keys and values to preve…	<3.8.0	HIDDEN	X.Y
CVE-2023-47641	62327	Aiohttp 3.8.0 includes a fix for CVE-2023-47641: Affected versions of…	<3.8.0	MEDIUM	6.5
CVE-2021-21330	39659	Aiohttp 3.7.4 includes a fix for CVE-2021-21330: In aiohttp before ve…	<3.7.4	MEDIUM	6.1
CVE-2024-42367	74380	Affected versions of aiohttp are vulnerable to Directory Traversal (C…	<3.10.2	-	-
CVE-2024-52304	74251	Affected versions of aiohttp are vulnerable to HTTP Request Smuggling…	<3.10.11	-	-
CVE-2024-52303	74252	Affected versions of aiohttp are vulnerable to Middleware Cache Pollu…	<3.10.11	-	-
CVE-2024-23334	64642	The vulnerability lies in the improper configuration of static resour…	>1.0.5,<3.9.2	HIGH	7.5
PVE-2024-64598	64598	The Aiohttp 0.22.0 addresses a security concern where ClientSession w…	<0.22.0	-	-
PVE-2021-25613	25613	Aiohttp 0.16.3 fixes a directory traversal vulnerability by making ch…	<0.16.3	HIDDEN	X.Y