Description
Netty in WSO2 transport-http before v6.3.1 is vulnerable to HTTP Response Splitting due to HTTP Header validation being disabled.
Remediation
References
https://snyk.io/vuln/SNYK-JAVA-ORGWSO2TRANSPORTHTTP-548944
Related Vulnerabilities
CVE-2014-0230 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2023-1428 Vulnerability in maven package io.grpc:grpc-protobuf
CVE-2023-36542 Vulnerability in maven package org.apache.nifi:nifi-standard-processors
CVE-2017-5638 Vulnerability in maven package org.apache.struts:struts2-core
CVE-2018-1313 Vulnerability in maven package org.apache.derby:derby