An issue exists in zeek version 4.1.0. There is a HTTP request splitting vulnerability that will invalidate any ZEEK HTTP based security analysis. NOTE: the vendor's position is that the observed behavior is intended
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zeek zeek 4.1.0 |