PT-2023-7418 · Aiohttp+5 · Aiohttp+5

Jnovikov

Published

2023-07-19

Updated

2025-11-04

CVE-2023-49081

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions aiohttp versions prior to 3.9.0

Description The issue arises from improper validation, allowing an attacker to modify the HTTP request or create a new one if they control the HTTP version. This can lead to CRLF injection and Request Smuggling. The vulnerability is exploitable when the attacker can control the HTTP version of the request, including its type, and when the Connection header is passed to the headers parameter. For example, if an unvalidated JSON value is used as a version and the attacker passes an array as the version parameter, it can bypass validation.

Recommendations For versions prior to 3.9.0, update to version 3.9.0 to resolve the issue. As a temporary workaround, validate the user input to the version parameter to ensure it is a str.

Exploit

Fix

DoS

RCE

HTTP Request/Response Smuggling

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-444CWE-93

Related Identifiers

ALT-PU-2024-16702

ALT-PU-2024-6120

BDU:2023-05462

BDU:2023-08273

BDU:2023-08455

BDU:2024-02173

BDU:2024-02174

CVE-2023-49081

DLA-4041-1

DSA-5828-1

GHSA-6X4H-9622-FQR6

GHSA-Q3QX-C6G2-7PW2

OESA-2023-1900

OPENSUSE-SU-2024:13691-1

OPENSUSE-SU-2024_0033-1

OPENSUSE-SU-2024_0034-1

PYSEC-2023-250

RHSA-2024:1057

RHSA-2024:1536

RHSA-2024:1878

RHSA-2024:2010

SUSE-SU-2024:0033-1

SUSE-SU-2024:0034-1

SUSE-SU-2024_0034-1

USN-7642-1

Affected Products

Alt Linux

Linuxmint

Red Os

Suse

Ubuntu

Aiohttp

PT-2023-7418 · Aiohttp+5 · Aiohttp+5

CVE-2023-49081

Weakness Enumeration

Related Identifiers

Affected Products

References · 72