vulnerability
FreeBSD: VID-3000acee-c45d-11eb-904f-14dae9d5a9d2 (CVE-2021-21330): aiohttp -- open redirect vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:M/Au:N/C:P/I:P/A:N) | Jun 3, 2021 | Nov 4, 2022 | Dec 10, 2025 |
Severity
6
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:N)
Published
Jun 3, 2021
Added
Nov 4, 2022
Modified
Dec 10, 2025
Description
Sviatoslav Sydorenko reports: Open redirect vulnerability — a maliciously crafted link to an aiohttp-based web-server could redirect the browser to a different website. It is caused by a bug in the aiohttp.web_middlewares.normalize_path_middleware middleware.
Solutions
freebsd-upgrade-package-py36-aiohttpfreebsd-upgrade-package-py37-aiohttpfreebsd-upgrade-package-py38-aiohttpfreebsd-upgrade-package-py39-aiohttp
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.