The host is installed with Apache HTTP Server 2.4.6 through 2.4.46 and is prone to a HTTP request smuggling vulnerability. A flaw is present in the application, which fails to properly handle an issue in mod_proxy_wstunnel. Successful exploitation could allow attackers to cause subsequent requests on the same connection to pass through with no HTTP validation, authentication or authorization possibly configured.