We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header can truncate/split the response forwarded to the client.
Reserved 2023-03-02 | Published 2023-03-07 | Updated 2025-02-13 | Assigner apacheCWE-444 Inconsistent Interpretation of HTTP Responses ('HTTP Response Smuggling')
2023-01-29: | Reported to security team |
Dimas Fariski Setyawan Putra (nyxsorcerer)
httpd.apache.org/security/vulnerabilities_24.html
lists.debian.org/debian-lts-announce/2023/04/msg00028.html
security.gentoo.org/glsa/202309-01
Support options