VulnerableCode Package Details - pkg:pypi/asyncua@0.9.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/asyncua@0.9.0

Essentials
History (2)

purl	pkg:pypi/asyncua@0.9.0

Next non-vulnerable version	0.9.96
Latest non-vulnerable version	0.9.96
Risk

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-4cw3-mdxr-dkfk Aliases: CVE-2023-26150 GHSA-2894-qcqf-g23g PYSEC-2023-189	Versions of the package asyncua before 0.9.96 are vulnerable to Improper Authentication such that it is possible to access Address Space without encryption and authentication. Note: This issue is a result of missing checks for services that require an active session.	0.9.96 Affected by 0 other vulnerabilities.
VCID-eem1-7deb-vuhf Aliases: CVE-2023-26151 GHSA-gfvq-mxw3-mfq3 PYSEC-2023-190	Versions of the package asyncua before 0.9.96 are vulnerable to Denial of Service (DoS) such that an attacker can send a malformed packet and as a result, the server will enter into an infinite loop and consume excessive memory.	0.9.96 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:19:40.313075+00:00	Pypa Importer	Affected by	VCID-4cw3-mdxr-dkfk	https://github.com/pypa/advisory-database/blob/main/vulns/asyncua/PYSEC-2023-189.yaml	38.6.0
2026-06-02T04:19:40.132031+00:00	Pypa Importer	Affected by	VCID-eem1-7deb-vuhf	https://github.com/pypa/advisory-database/blob/main/vulns/asyncua/PYSEC-2023-190.yaml	38.6.0