2021-09-29 18:34:01
mitre
PUBLISHED
An issue was discovered in zeek version 4.1.0. There is a HTTP request splitting vulnerability that will invalidate any ZEEK HTTP based security analysis. NOTE: the vendors position is that the observed behavior is intended