Description
Netty in WSO2 transport-http before v6.3.1 is vulnerable to HTTP Response Splitting due to HTTP Header validation being disabled.
Remediation
References
https://snyk.io/vuln/SNYK-JAVA-ORGWSO2TRANSPORTHTTP-548944
Related Vulnerabilities
CVE-2022-31103 Vulnerability in npm package lettersanitizer
CVE-2020-5421 Vulnerability in maven package org.springframework:spring-web
CVE-2021-44548 Vulnerability in maven package org.apache.solr:solr-core
CVE-2023-36479 Vulnerability in maven package org.eclipse.jetty:jetty-servlets
CVE-2023-46659 Vulnerability in maven package org.jenkins-ci.plugins:trac