CVE-2026-22815

Published April 1st, 2026

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, insufficient restrictions in header/trailer handling could cause uncapped memory usage. This issue has been patched in version 3.13.4.

aio-libs/aiohttp

Asynchronous HTTP client/server framework for asyncio and Python

GitHub

16.4K