VYPR
High severityNVD Advisory· Published Mar 7, 2023· Updated Feb 13, 2025

Apache HTTP Server: mod_proxy_uwsgi HTTP response splitting

CVE-2023-27522

Description

HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55.

Special characters in the origin response header can truncate/split the response forwarded to the client.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
uWSGIPyPI
< 2.0.222.0.22

Affected products

39

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.