The host is installed with Apache HTTP Server 2.4.41 through 2.4.46 and is prone to a NULL pointer dereference vulnerability. A flaw is present in the application, which fails to properly handle specially crafted requests using both Content-Length and Transfer-Encoding headers. Successful exploitation could allow unprivileged attackers to cause mod_proxy_http to crash, leading to a denial of service.