This page collects WhisperX intelligence signals tagged #CVE-2026-40347. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical denial-of-service (DoS) vulnerability has been disclosed in the widely used `python-multipart` library, a core component for handling file uploads and form data in Python web frameworks like FastAPI and Starlette. The flaw, tracked as CVE-2026-40347, allows an attacker to crash or severely degrade server per...
A critical denial-of-service vulnerability has been disclosed in the widely used `python-multipart` library, forcing a mandatory security update for thousands of Python applications. The flaw, tracked as CVE-2026-40347, resides in the library's core parsing logic for `multipart/form-data` requests. Attackers can exploi...
A critical denial of service vulnerability has been identified in python-multipart, a widely deployed form parsing library central to the FastAPI and Starlette Python web frameworks. The flaw, tracked as CVE-2026-40347 and catalogued as GHSA-mj87-hwqh-73pj, allows attackers to trigger service disruption by submitting c...
A denial of service vulnerability has been identified in python-multipart, a widely used Python library for parsing multipart/form-data requests. The flaw, tracked as CVE-2026-40347, affects versions up to and including 0.0.20, with a patched release available in version 0.0.26. The vulnerability stems from inefficient...