[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-27522":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":27,"aliases":28,"duplicate_of":9,"upstream":31,"downstream":32,"duplicates":67,"related":68,"reserved_at":9,"published_at":75,"modified_at":76,"state":77,"summary":78,"references_raw":87,"kevs":131,"epss":132,"epss_history":135,"metrics":400,"affected":410},"CVE-2023-27522","HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55.\n\nSpecial characters in the origin response header can truncate/split the response forwarded to the client.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-444","Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')","The product acts as an intermediary HTTP agent\n         (such as a proxy or firewall) in the data flow between two\n         entities such as a client and server, but it does not\n         interpret malformed HTTP requests or responses in ways that\n         are consistent with how the messages will be processed by\n         those entities that are at the ultimate destination.","weakness","Incomplete","Base",[19,23],{"id":20,"name":21,"techniques":22},"CAPEC-273","HTTP Response Smuggling",[],{"id":24,"name":25,"techniques":26},"CAPEC-33","HTTP Request Smuggling",[],[],[29,30],"GHSA-vcph-37mh-fqrh","BIT-apache-2023-27522",[],[33,35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65],{"_key":34},"ALPINE-CVE-2023-27522",{"_key":36},"SUSE-SU-2023:0764-1",{"_key":38},"SUSE-SU-2023:0799-1",{"_key":40},"SUSE-SU-2023:1573-1",{"_key":42},"RHSA-2023:5049",{"_key":44},"RHSA-2023:5050",{"_key":46},"RHSA-2023:6403",{"_key":48},"SUSE-SU-2023:1658-1",{"_key":50},"OPENSUSE-SU-2024:12776-1",{"_key":52},"DLA-3401-1",{"_key":54},"DSA-5376-1",{"_key":56},"RHSA-2023:4629",{"_key":58},"RHSA-2024:4504",{"_key":60},"MGASA-2023-0100",{"_key":62},"UBUNTU-CVE-2023-27522",{"_key":64},"USN-5942-1",{"_key":66},"DEBIAN-CVE-2023-27522",[],[69,70,71,72,73,74],{"_key":36},{"_key":38},{"_key":40},{"_key":48},{"_key":50},{"_key":60},"2023-03-07T15:09:30.122Z","2025-02-13T16:45:26.302Z","Analyzed",{"cisa_kev":79,"cisa_ransomware":79,"cisa_vendor":9,"epss_severity":80,"epss_score":81,"severity":82,"severity_score":83,"severity_version":84,"severity_source":85,"severity_vector":86,"severity_status":77},false,"low",0.00667,"high",7.5,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",[88,96,101,105,110,114,118,122,127],{"url":89,"sources":90,"tags":93},"https://httpd.apache.org/security/vulnerabilities_24.html",[85,91,92],"nvd","osv_pypi",[94,95],"Vendor Advisory","WEB",{"url":97,"sources":98,"tags":99},"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",[85,91,92],[100,95],"Third Party Advisory",{"url":102,"sources":103,"tags":104},"https://security.gentoo.org/glsa/202309-01",[85,91,92],[100,95],{"url":106,"sources":107,"tags":108},"https://nvd.nist.gov/vuln/detail/CVE-2023-27522",[92],[109],"Advisory",{"url":111,"sources":112,"tags":113},"https://github.com/apache/httpd/commit/d753ea76b5972a85349b68c31b59d04c60014f2d",[92],[95],{"url":115,"sources":116,"tags":117},"https://github.com/unbit/uwsgi/commit/58ee1df31fa9e9af106aaeabb82374c36b433822",[92],[95],{"url":119,"sources":120,"tags":121},"https://github.com/unbit/uwsgi/commit/acb03530aaaeaa810f28a5b64da619525940f569",[92],[95],{"url":123,"sources":124,"tags":125},"https://github.com/unbit/uwsgi",[92],[126],"PACKAGE",{"url":128,"sources":129,"tags":130},"https://uwsgi-docs.readthedocs.io/en/latest/Changelog-2.0.22.html",[92],[95],[],{"date":133,"score":81,"percentile":134},"2026-06-04",0.71654,[136,140,143,146,149,152,155,158,161,164,167,170,173,176,179,183,186,189,192,195,198,201,203,206,208,211,213,216,220,223,226,229,231,234,237,241,244,247,250,253,256,259,261,264,267,270,273,276,279,281,283,286,289,291,295,298,301,304,307,311,314,316,319,322,324,327,330,333,335,338,341,344,347,350,353,356,359,362,364,367,370,373,376,379,382,385,388,391,394,397],{"date":137,"score":138,"percentile":139},"2025-11-04",0.00695,0.71116,{"date":141,"score":138,"percentile":142},"2025-11-05",0.71101,{"date":144,"score":138,"percentile":145},"2025-11-06",0.71099,{"date":147,"score":138,"percentile":148},"2025-11-07",0.71112,{"date":150,"score":138,"percentile":151},"2025-11-08",0.71111,{"date":153,"score":138,"percentile":154},"2025-11-09",0.71104,{"date":156,"score":138,"percentile":157},"2025-11-10",0.7109,{"date":159,"score":138,"percentile":160},"2025-11-11",0.71096,{"date":162,"score":138,"percentile":163},"2025-11-12",0.71119,{"date":165,"score":138,"percentile":166},"2025-11-13",0.71126,{"date":168,"score":138,"percentile":169},"2025-11-14",0.71134,{"date":171,"score":138,"percentile":172},"2025-11-15",0.71136,{"date":174,"score":138,"percentile":175},"2025-11-16",0.71132,{"date":177,"score":138,"percentile":178},"2025-11-17",0.71125,{"date":180,"score":181,"percentile":182},"2025-11-18",0.11833,0.9303,{"date":184,"score":181,"percentile":185},"2025-11-19",0.93034,{"date":187,"score":181,"percentile":188},"2025-11-20",0.93039,{"date":190,"score":138,"percentile":191},"2025-11-21",0.71148,{"date":193,"score":138,"percentile":194},"2025-11-22",0.71142,{"date":196,"score":138,"percentile":197},"2025-11-23",0.71122,{"date":199,"score":138,"percentile":200},"2025-11-24",0.71115,{"date":202,"score":138,"percentile":163},"2025-11-25",{"date":204,"score":138,"percentile":205},"2025-11-26",0.71123,{"date":207,"score":138,"percentile":166},"2025-11-27",{"date":209,"score":138,"percentile":210},"2025-11-28",0.71113,{"date":212,"score":138,"percentile":154},"2025-11-29",{"date":214,"score":138,"percentile":215},"2025-11-30",0.71097,{"date":217,"score":218,"percentile":219},"2025-12-01",0.0058,0.6815,{"date":221,"score":218,"percentile":222},"2025-12-02",0.68157,{"date":224,"score":218,"percentile":225},"2025-12-03",0.68154,{"date":227,"score":138,"percentile":228},"2025-12-04",0.71105,{"date":230,"score":138,"percentile":139},"2025-12-05",{"date":232,"score":138,"percentile":233},"2025-12-06",0.71118,{"date":235,"score":138,"percentile":236},"2025-12-07",0.7112,{"date":238,"score":239,"percentile":240},"2025-12-08",0.0064,0.69741,{"date":242,"score":239,"percentile":243},"2025-12-09",0.69773,{"date":245,"score":239,"percentile":246},"2025-12-10",0.69816,{"date":248,"score":239,"percentile":249},"2025-12-11",0.69837,{"date":251,"score":239,"percentile":252},"2025-12-12",0.69863,{"date":254,"score":239,"percentile":255},"2025-12-13",0.69865,{"date":257,"score":239,"percentile":258},"2025-12-14",0.69868,{"date":260,"score":239,"percentile":252},"2025-12-15",{"date":262,"score":239,"percentile":263},"2025-12-16",0.6987,{"date":265,"score":239,"percentile":266},"2025-12-17",0.69885,{"date":268,"score":239,"percentile":269},"2025-12-18",0.69914,{"date":271,"score":239,"percentile":272},"2025-12-19",0.69932,{"date":274,"score":239,"percentile":275},"2025-12-20",0.69929,{"date":277,"score":239,"percentile":278},"2025-12-21",0.69919,{"date":280,"score":239,"percentile":269},"2025-12-22",{"date":282,"score":239,"percentile":269},"2025-12-23",{"date":284,"score":239,"percentile":285},"2025-12-24",0.69922,{"date":287,"score":239,"percentile":288},"2025-12-25",0.69947,{"date":290,"score":239,"percentile":288},"2025-12-26",{"date":292,"score":293,"percentile":294},"2025-12-27",0.00663,0.7061,{"date":296,"score":239,"percentile":297},"2025-12-28",0.69921,{"date":299,"score":239,"percentile":300},"2025-12-29",0.69918,{"date":302,"score":239,"percentile":303},"2025-12-30",0.6993,{"date":305,"score":239,"percentile":306},"2025-12-31",0.69949,{"date":308,"score":309,"percentile":310},"2026-01-01",0.0057,0.68092,{"date":312,"score":309,"percentile":313},"2026-01-02",0.68078,{"date":315,"score":309,"percentile":313},"2026-01-03",{"date":317,"score":239,"percentile":318},"2026-01-04",0.69948,{"date":320,"score":239,"percentile":321},"2026-01-05",0.6994,{"date":323,"score":239,"percentile":288},"2026-01-06",{"date":325,"score":239,"percentile":326},"2026-01-07",0.69962,{"date":328,"score":239,"percentile":329},"2026-01-08",0.69977,{"date":331,"score":239,"percentile":332},"2026-01-09",0.69983,{"date":334,"score":239,"percentile":332},"2026-01-10",{"date":336,"score":239,"percentile":337},"2026-01-11",0.69978,{"date":339,"score":239,"percentile":340},"2026-01-12",0.69973,{"date":342,"score":239,"percentile":343},"2026-01-13",0.69969,{"date":345,"score":239,"percentile":346},"2026-01-14",0.69999,{"date":348,"score":239,"percentile":349},"2026-01-15",0.70006,{"date":351,"score":239,"percentile":352},"2026-01-16",0.70024,{"date":354,"score":239,"percentile":355},"2026-01-17",0.70017,{"date":357,"score":239,"percentile":358},"2026-01-18",0.69998,{"date":360,"score":239,"percentile":361},"2026-01-19",0.6999,{"date":363,"score":239,"percentile":358},"2026-01-20",{"date":365,"score":239,"percentile":366},"2026-01-21",0.70002,{"date":368,"score":239,"percentile":369},"2026-01-22",0.70015,{"date":371,"score":239,"percentile":372},"2026-01-23",0.70047,{"date":374,"score":239,"percentile":375},"2026-01-24",0.70052,{"date":377,"score":239,"percentile":378},"2026-01-25",0.70023,{"date":380,"score":239,"percentile":381},"2026-01-26",0.70018,{"date":383,"score":239,"percentile":384},"2026-01-27",0.70021,{"date":386,"score":239,"percentile":387},"2026-01-28",0.70035,{"date":389,"score":239,"percentile":390},"2026-01-29",0.70033,{"date":392,"score":239,"percentile":393},"2026-01-30",0.7004,{"date":395,"score":239,"percentile":396},"2026-01-31",0.70046,{"date":398,"score":309,"percentile":399},"2026-02-01",0.68168,[401,406,408],{"source":85,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":402,"cvss_v4_0":9},{"baseScore":83,"baseSeverity":403,"vectorString":86,"impactScore":404,"exploitabilityScore":405},"HIGH",6,10,{"source":91,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":407,"cvss_v4_0":9},{"baseScore":83,"baseSeverity":403,"vectorString":86,"impactScore":404,"exploitabilityScore":405},{"source":92,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":409,"cvss_v4_0":9},{"baseScore":83,"baseSeverity":9,"vectorString":86,"impactScore":404,"exploitabilityScore":405},[411,423,431,439,448],{"ecosystem":9,"name":412,"vendor":413,"product":414,"cpe_part":415,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":416},"Apache HTTP Server","apache software foundation","apache http server","a",[417],{"version":418,"is_range":419,"range_type":85,"version_start":420,"version_start_type":421,"version_end":422,"version_end_type":421,"fixed_in":9},">= 2.4.30, \u003C= 2.4.55",true,"2.4.30","including","2.4.55",{"ecosystem":9,"name":424,"vendor":9,"product":424,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":425},"HTTP Server",[426],{"version":427,"is_range":419,"range_type":428,"version_start":420,"version_start_type":421,"version_end":429,"version_end_type":430,"fixed_in":9},"gte2.4.30_lt2.4.56","cpe","2.4.56","excluding",{"ecosystem":9,"name":432,"vendor":433,"product":434,"cpe_part":435,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":436},"debian linux","debian","debian_linux","o",[437],{"version":438,"is_range":79,"range_type":428,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"ecosystem":440,"name":441,"vendor":440,"product":441,"cpe_part":9,"purl_type":442,"purl_namespace":9,"purl_name":441,"source":9,"versions":443},"PyPI","uwsgi","pypi",[444],{"version":445,"is_range":419,"range_type":446,"version_start":9,"version_start_type":9,"version_end":447,"version_end_type":430,"fixed_in":9},"lt2_0_22","ecosystem","2.0.22",{"ecosystem":9,"name":441,"vendor":449,"product":441,"cpe_part":415,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":450},"unbit",[451],{"version":452,"is_range":419,"range_type":428,"version_start":9,"version_start_type":9,"version_end":447,"version_end_type":430,"fixed_in":9},"lt2.0.22"]