Apache · Apache Http Server · CVE-2026-33523
**Name of the Vulnerable Software and Affected Versions**
Apache HTTP Server versions prior to 2.4.67
**Description**
HTTP response splitting occurs in multiple Apache HTTP Server modules when interacting with untrusted or compromised backend servers. This issue allows an attacker to split an HTTP response, potentially leading to cache poisoning or cross-site scripting.
**Recommendations**
Upgrade to version 2.4.67.