PyPI: telebot-components

CVE-2024-23334

Safety vulnerability ID: SFTY-20240129-14809

Safety legacy ID: pyup.io-64953

Telebot-components version 0.11.1 upgrades its aiohttp dependency to version 3.9.2 from 3.9.1. This update is in response to addressing the security concern identified as CVE-2024-23334. https://github.com/bots-against-war/telebot-components/commit/a33844be3278d4ae491292bf513d7a06f153436f

PythonPyPINVDNVD
Created at: May 22, 2026Updated at: May 22, 2026

Overview

Telebot-components version 0.11.1 upgrades its aiohttp dependency to version 3.9.2 from 3.9.1. This update is in response to addressing the security concern identified as CVE-2024-23334. https://github.com/bots-against-war/telebot-components/commit/a33844be3278d4ae491292bf513d7a06f153436f

Advisory

Telebot-components version 0.11.1 upgrades its aiohttp dependency to version 3.9.2 from 3.9.1. This update is in response to addressing the security concern identified as CVE-2024-23334. https://github.com/bots-against-war/telebot-components/commit/a33844be3278d4ae491292bf513d7a06f153436f

Affected Package

Affecting telebot-components package, versions
<0.11.1

Also affects

---

How to Fix

Upgrade
telebot-components
to
0.11.1
or higher.

Mitigation and Workarounds

---

Vulnerable Functions

Functions linked to known vulnerabilities.

Vulnerable function data is available for Enterprise customers

Book a call with us to see Safety in action.

References

Safety

Verified by Safety

Our Cybersecurity Intelligence Team reviewed this vulnerability. We combine public data with our own research to find issues not yet reported to public sources.

Learn more