CVE-2022-3215HIGHCVSS 7.5≥ unspecified, ≤ 2.41.22022-09-28
CVE-2022-3215 [HIGH] CWE-113 CVE-2022-3215: NIOHTTP1 and projects using it for generating HTTP responses can be subject to a HTTP Response Injec
NIOHTTP1 and projects using it for generating HTTP responses can be subject to a HTTP Response Injection attack. This occurs when a HTTP/1.1 server accepts user generated input from an incoming request and reflects it into a HTTP/1.1 response header in some form. A malicious user can add newlines to their input (usually in encoded form) and "inject" tho
cvelistv5nvd