Faulty input validation in the core of Apache allows malicious or exploitable backend/content generators to split HTTP responses.
This issue affects Apache HTTP Server: up to and including 2.4.58.
Description<!---->A flaw was found in httpd The response headers are not sanitized before an HTTP response is sent when a malicious backend can insert a Content-Type, Content-Encoding or some other headers, resulting in a HTTP response splittingA flaw was found in httpd The response headers are not sanitized before an HTTP response is sent when ...