{"vulnerability": "CVE-2022-37436", "sightings": [{"uuid": "e7bbf79a-729c-4764-a45e-513a8cbfb1dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37436", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-133-01", "content": "", "creation_timestamp": "2025-05-13T10:00:00.000000Z"}, {"uuid": "4d6591d6-22ae-4a86-8440-17c5dc888211", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37436", "type": "seen", "source": "Telegram/Hf_SunJuoYNf_bsQCJ20cuXyI7bzH8EMEXzusn30k3vpXeQ", "content": "", "creation_timestamp": "2024-10-15T10:14:15.000000Z"}, {"uuid": "d77baaf7-240c-4ad8-abcd-7ec65e87cf86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37436", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-027-02", "content": "", "creation_timestamp": "2026-01-27T11:00:00.000000Z"}, {"uuid": "45854b6b-b6ef-4e8b-ae32-0051f6f8887b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37436", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/10531", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37436\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Prior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client.\n\ud83d\udccf Published: 2023-01-17T19:12:59.968Z\n\ud83d\udccf Modified: 2025-04-04T18:06:37.763Z\n\ud83d\udd17 References:\n1. https://httpd.apache.org/security/vulnerabilities_24.html\n2. https://security.gentoo.org/glsa/202309-01", "creation_timestamp": "2025-04-04T18:36:30.000000Z"}, {"uuid": "ecf1bcfb-0265-4d85-9978-a9ca5cc48e11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37436", "type": "seen", "source": "https://t.me/arpsyndicate/139", "content": "#ExploitObserverAlert\n\nCVE-2022-37436\n\nDESCRIPTION: Exploit Observer has 9 entries related to CVE-2022-37436. Prior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client.\n\nFIRST-EPSS: 0.000440000\nNVD-IS: 1.4\nNVD-ES: 3.9", "creation_timestamp": "2023-11-13T01:42:55.000000Z"}, {"uuid": "a998f65b-ff72-4ff4-afa4-4eddc39620f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37436", "type": "seen", "source": "https://t.me/cibsecurity/56617", "content": "\u203c CVE-2022-37436 \u203c\n\nPrior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-17T22:15:37.000000Z"}]}