[users@httpd] CVE-2023-38709: Apache HTTP Server: HTTP response splitting

Eric Covener Thu, 04 Apr 2024 06:57:22 -0700


Affected versions:


- Apache HTTP Server through 2.4.58

Description:

Faulty input validation in the core of Apache allows malicious or exploitable 
backend/content generators to split HTTP responses.

This issue affects Apache HTTP Server: through 2.4.58.

Credit:

Orange Tsai (@orange_8361) from DEVCORE (finder)

References:

https://httpd.apache.org/
https://www.cve.org/CVERecord?id=CVE-2023-38709


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

[users@httpd] CVE-2023-38709: Apache HTTP Server: HTTP response splitting

Reply via email to