CVE-2026-34514 | aio-libs aiohttp up to 3.13.3 Parameter content_type response splitting (GHSA-2vrm-gr82-f7m5)

A vulnerability was found in aio-libs aiohttp up to 3.13.3. It has been classified as problematic. Affected is an unknown function of the component Parameter Handler. This manipulation of the argument content_type causes http response splitting.

This vulnerability appears as CVE-2026-34514. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More