https://vulnerability.circl.lu/sightings/feed 2026-05-06T16:25:14.737879+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/21d0550b-5978-4760-8ec4-e99bdc706219/export 2026-05-06T16:25:15.137817+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "21d0550b-5978-4760-8ec4-e99bdc706219", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41834", "type": "seen", "source": "https://t.me/cibsecurity/70718", "content": "\u203c CVE-2023-41834 \u203c\n\nImproper Neutralization of CRLF Sequences in HTTP Headers in Apache Flink Stateful Functions 3.1.0, 3.1.1 and 3.2.0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via crafted HTTP requests.\u00c2\u00a0Attackers could potentially inject malicious content into the HTTP response that is sent to the user's browser. Users should upgrade to Apache Flink Stateful Functions version 3.3.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-19T16:29:26.000000Z"} 2023-09-19T16:29:26+00:00