CVE-2026-34513

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions AIOHTTP versions prior to 3.13.4

Description AIOHTTP, an asynchronous HTTP client/server framework, is susceptible to excessive memory usage due to an unbounded DNS cache. This can potentially lead to a Denial of Service (DoS) situation if an application makes requests to a large number of hosts, causing the DNS cache to grow continuously.

Recommendations Update to version 3.13.4 or later.

Fix

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

CLEANSTART-2026-AN27706

CVE-2026-34513

ECHO-BC93-24A8-8727

GHSA-HCC4-C3V8-RX92

OESA-2026-2192

OESA-2026-2193

OESA-2026-2194

Affected Products

Aiohttp

CVE-2026-34513

Weakness Enumeration

Related Identifiers

Affected Products

References · 63