vulnerability
IBM WebSphere Application Server: CVE-2016-0359: IBM InfoSphere Information Server is vulnerable to a HTTP response splitting vulnerability (CVE-2016-0359)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | Jul 3, 2016 | Apr 27, 2018 | Apr 14, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Jul 3, 2016
Added
Apr 27, 2018
Modified
Apr 14, 2025
Description
CRLF injection vulnerability in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 Full before 8.5.5.10, and 8.5 Liberty before Liberty Fix Pack 16.0.0.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.
Solutions
ibm-was-install-7-0-0-0-pi58918ibm-was-install-8-0-0-0-pi58918ibm-was-install-8-5-0-0-pi58918ibm-was-install-8-5-0-0-pi58918-libertyibm-was-upgrade-7-0-0-0-7-0-0-43ibm-was-upgrade-8-0-0-0-8-0-0-13ibm-was-upgrade-8-5-0-0-16-0-0-2-libertyibm-was-upgrade-8-5-0-0-8-5-5-10
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.