Weaknesses of type CWE-444
235 resultsCVE-2025-69224MEDIUMAIOHTTP's Unicode processing of header values could cause parsing discrepanciesEPSS 0.2%CVE-2026-52845HIGHCaddy: FastCGI header normalization bypass in `forward_auth copy_headers`EPSS 0.2%CVE-2026-32239MEDIUMCap'n Proto has an integer overflow in KJ-HTTPEPSS 0.2%CVE-2026-32240MEDIUMCap'n Proto: Integer overflow in KJ-HTTP chunk sizeEPSS 0.2%CVE-2026-4742LOWHTTP Request Smuggling in visualfc/liteideEPSS 0.2%CVE-2026-34441MEDIUMcpp-httplib: HTTP Request Smuggling via Unconsumed GET Request BodyEPSS 0.2%CVE-2024-8912HIGHHTTP Request Smuggling in LookerEPSS 0.2%CVE-2025-4600HIGHHTTP Request Smuggling in Google Cloud Classic Application Load Balancer due to Improper Chunked Encoding ValidationEPSS 0.2%CVE-2026-41853MEDIUMSpring Framework Multipart Request Smuggling in Spring MVC and WebFluxEPSS 0.2%CVE-2022-39163MEDIUMIBM Cognos Controller HTTP response smugglingEPSS 0.2%CVE-2026-26365MEDIUMAkamai Ghost on Akamai CDN edge servers before 2026-02-06 mishandles processing of custom hop-by-hop HTTP headers, where an incoming requestEPSS 0.2%CVE-2025-31958LOWHCL BigFix Service Management (SM) is susceptible to HTTP Request SmugglingEPSS 0.2%CVE-2026-53538LOWPython-Multipart: Semicolon treated as querystring field separator enables parameter smugglingEPSS 0.2%CVE-2026-44546LOWHeader injection via WebSocket upgrade parser differential allows ASGI scope header spoofingEPSS 0.2%CVE-2026-46342LOWNuxt: `__nuxt_island` endpoint does not bind responses to request props, enabling shared-cache poisoningEPSS 0.1%