Recent CVE
Browse CVE per vendor
Browse CWEs
About
CVE-Search
CVE-2023-38709
ID
CVE-2023-38709
Summary
Faulty input validation in the core of Apache allows malicious or exploitable backend/content generators to split HTTP responses. This issue affects Apache HTTP Server: through 2.4.58.
References
https://httpd.apache.org/security/vulnerabilities_24.html
https://security.netapp.com/advisory/ntap-20240415-0013/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WNV4SZAPVS43DZWNFU7XBYYOZEZMI4ZC/
http://www.openwall.com/lists/oss-security/2024/04/04/3
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I2N2NZEX3MR64IWSGL3QGN7KSRUGAEMF/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LX5U34KYGDYPRH3AJ6MDDCBJDWDPXNVJ/
https://lists.debian.org/debian-lts-announce/2024/05/msg00013.html
https://support.apple.com/kb/HT214119
http://seclists.org/fulldisclosure/2024/Jul/18
Vulnerable Configurations
CVSS
Base:
None
Impact:
Exploitability:
Access
Vector
Complexity
Authentication
Impact
Confidentiality
Integrity
Availability
Last major update
30-07-2024 - 02:15
Published
04-04-2024 - 20:15
Last modified
30-07-2024 - 02:15
Back to Top