CVE-2025-55315
*
ASP.NET Kestrel has inconsistencies in HTTP parsing that allow an authenticated attacker to bypass network defenses via HTTP request/response smuggling.
*
Proof of Concept