EUVD-2016-0435

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

CRLF injection in IBM WebSphere allows remote attackers to inject HTTP headers and conduct attacks.

Reporter	Title	Published	Views	Family All 8
0day.today	Microsoft Windows 7 SP1 (x86) - Privilege Escalation (MS16-014)	29 Jun 201600:00	–	zdt
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM WebSphere eXtreme Scale Client could expose sensitive information (CVE-2016-2861, CVE-2016-0400)	15 Jun 201807:05	–	ibm
CNVD	IBM WebSphere eXtreme Scale HTTP Response Splitting Vulnerability	31 May 201600:00	–	cnvd
CVE	CVE-2016-0400	2 Jul 201614:00	–	cve
Cvelist	CVE-2016-0400	2 Jul 201614:00	–	cvelist
NVD	CVE-2016-0400	2 Jul 201614:59	–	nvd
Packet Storm	Windows 7 SP1 x86 Privilege Escalation	30 Jun 201600:00	–	packetstorm
Prion	Crlf injection	2 Jul 201614:59	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "b2b2968b-2a15-372e-8cf8-c357dff0cff7",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "6a3e201d-d088-374b-b8c5-ecaf7465fbff",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/cve/CVE-2016-0400
www-01	www.www-01.ibm.com/support/docview.wss
www-01	www.www-01.ibm.com/support/docview.wss
exploit-db	www.exploit-db.com/exploits/40039/
www-01	www.www-01.ibm.com/support/docview.wss
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.3Medium risk

Vulners AI Score6.3

CVSS 36.1

CVSS 24.3

EPSS0.03486