Faulty input validation in the core of Apache allows malicious or exploitable backend/content generators to split HTTP responses. This issue affects Apache HTTP Server: through 2.4.58.
https://security.netapp.com/advisory/ntap-20240415-0013/
https://lists.debian.org/debian-lts-announce/2024/05/msg00013.html