6.5 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.3%
The llhttp parser in the http module in Node v18.7.0 does not correctly handle header fields that are not terminated with CLRF. This may result in HTTP Request Smuggling.