CVE-2026-34515

Published April 1st, 2026

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, on Windows the static resource handler may expose information about a NTLMv2 remote path. This issue has been patched in version 3.13.4.

aio-libs/aiohttp

Asynchronous HTTP client/server framework for asyncio and Python

GitHub

16.4K