Security Advisory

CVE-2026-34519

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-01 20:26:25

Last updated 2026-04-02 15:40:13

Assigner GitHub_M

State PUBLISHED

Description

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an attacker who controls the reason parameter when creating a Response may be able to inject extra headers or similar exploits. This issue has been patched in version 3.13.4.

← Browse all CVEs View on cve.org ↗