Vulnerability Details CVE-2026-54279
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, host-only cookies that are saved with CookieJar.save() and then restored later with CookieJar.load() lose their host-only status. This vulnerability is fixed in 3.14.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 17.4%
CVSS Severity