Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Apache HTTP Server Interpretation Conflict Vulnerability - CVE-2022-37436 - Vulnerability Database
Apache HTTP Server

Apache HTTP Server Interpretation Conflict Vulnerability - CVE-2022-37436

Medium
Reference: CVE-2022-37436
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-37436
Title: Apache HTTP Server Interpretation Conflict Vulnerability
Overview:

Prior to Apache HTTP Server 2.4.55 a malicious backend can cause the response headers to be truncated early resulting in some headers being incorporated into the response body. If the later headers have any security purpose they will not be interpreted by the client.