Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CWE-443:DEPRECATED: HTTP response splitting
Weakness ID:443
Version:v4.17
Weakness Name:DEPRECATED: HTTP response splitting
Vulnerability Mapping:Prohibited
Abstraction:Base
Structure:Simple
Status:Deprecated
Likelihood of Exploit:
DetailsContent HistoryObserved CVE ExamplesReports
1Vulnerabilities found
CVE-2026-33523
Assigner-Apache Software Foundation
ShareView Details
Assigner-Apache Software Foundation
CVSS Score-6.5||MEDIUM
EPSS-0.16% / 36.83%
||
7 Day CHG~0.00%
Published-04 May, 2026 | 14:40
Updated-04 May, 2026 | 20:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Apache HTTP Server: multiple modules: HTTP response splitting forwarding malicious status line

HTTP response splitting vulnerability in multiple Apache HTTP Server modules with untrusted or compromised backend servers. This issue affects Apache HTTP Server: from through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue.

Action-Not Available
Vendor-The Apache Software Foundation
Product-http_serverApache HTTP Server
CWE ID-CWE-443
DEPRECATED: HTTP response splitting