Vulnerability Database

296,202

Total vulnerabilities in the database

CVE-2016-0359

CRLF injection vulnerability in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 Full before 8.5.5.10, and 8.5 Liberty before Liberty Fix Pack 16.0.0.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.

  • Published: Jul 3, 2016
  • Updated: Apr 13, 2023
  • CVE: CVE-2016-0359
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.1
  • AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
ibm / websphere_application_server 7.0.0.14 7.0.0.14.x
ibm / websphere_application_server 8.5.5.6 8.5.5.6.x
ibm / websphere_application_server 7.0.0.12 7.0.0.12.x
ibm / websphere_application_server 7.0.0.2 7.0.0.2.x
ibm / websphere_application_server 7.0.0.37 7.0.0.37.x
ibm / websphere_application_server 7.0.0.31 7.0.0.31.x
ibm / websphere_application_server 7.0.0.24 7.0.0.24.x
ibm / websphere_application_server 7.0.0.25 7.0.0.25.x
ibm / websphere_application_server 7.0.0.33 7.0.0.33.x
ibm / websphere_application_server 7.0.0.5 7.0.0.5.x
ibm / websphere_application_server 7.0.0.18 7.0.0.18.x
ibm / websphere_application_server 8.0.0.5 8.0.0.5.x
ibm / websphere_application_server 7.0.0.15 7.0.0.15.x
ibm / websphere_application_server 8.0.0.11 8.0.0.11.x
ibm / websphere_application_server 8.5.5.8 8.5.5.8.x
ibm / websphere_application_server 7.0.0.23 7.0.0.23.x
ibm / websphere_application_server 7.0.0.38 7.0.0.38.x
ibm / websphere_application_server 8.0.0.7 8.0.0.7.x
ibm / websphere_application_server 7.0.0.9 7.0.0.9.x
ibm / websphere_application_server 7.0.0.4 7.0.0.4.x
ibm / websphere_application_server 7.0.0.11 7.0.0.11.x
ibm / websphere_application_server 7.0.0.32 7.0.0.32.x
ibm / websphere_application_server 8.0.0.1 8.0.0.1.x
ibm / websphere_application_server 7.0.0.39 7.0.0.39.x
ibm / websphere_application_server 8.5.5.5 8.5.5.5.x
ibm / websphere_application_server 8.5.5.9 8.5.5.9.x
ibm / websphere_application_server 7.0.0.41 7.0.0.41.x
ibm / websphere_application_server 7.0 7.0.x
ibm / websphere_application_server 7.0.0.8 7.0.0.8.x
ibm / websphere_application_server 8.0 8.0.x
ibm / websphere_application_server 8.0.0.4 8.0.0.4.x
ibm / websphere_application_server 7.0.0.34 7.0.0.34.x
ibm / websphere_application_server 7.0.0.19 7.0.0.19.x
ibm / websphere_application_server 8.5.0.0 8.5.0.0.x
ibm / websphere_application_server 7.0.0.17 7.0.0.17.x
ibm / websphere_application_server 8.0.0.12 8.0.0.12.x
ibm / websphere_application_server 7.0.0.28 7.0.0.28.x
ibm / websphere_application_server 8.0.0.8 8.0.0.8.x
ibm / websphere_application_server 7.0.0.6 7.0.0.6.x
ibm / websphere_application_server 8.0.0.2 8.0.0.2.x
ibm / websphere_application_server 7.0.0.22 7.0.0.22.x
ibm / websphere_application_server 8.5.5.4 8.5.5.4.x
ibm / websphere_application_server 7.0.0.29 7.0.0.29.x
ibm / websphere_application_server 8.5.5.7 8.5.5.7.x
ibm / websphere_application_server 7.0.0.7 7.0.0.7.x
ibm / websphere_application_server 8.0.0.0 8.0.0.0.x
ibm / websphere_application_server 7.0.0.13 7.0.0.13.x
ibm / websphere_application_server 7.0.0.3 7.0.0.3.x
ibm / websphere_application_server 7.0.0.21 7.0.0.21.x
ibm / websphere_application_server 8.0.0.9 8.0.0.9.x
ibm / websphere_application_server 8.0.0.10 8.0.0.10.x
ibm / websphere_application_server 8.0.0.3 8.0.0.3.x
ibm / websphere_application_server 7.0.0.1 7.0.0.1.x
ibm / websphere_application_server 7.0.0.35 7.0.0.35.x
ibm / websphere_application_server 7.0.0.16 7.0.0.16.x
ibm / websphere_application_server 7.0.0.0 7.0.0.0.x
ibm / websphere_application_server 7.0.0.10 7.0.0.10.x
ibm / websphere_application_server 8.0.0.6 8.0.0.6.x
ibm / websphere_application_server 7.0.0.36 7.0.0.36.x
ibm / websphere_application_server 7.0.0.27 7.0.0.27.x