WebSphere Application Server is shipped as a component of WebSphere Remote Server. Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin.
For vulnerability details, see the security bulletin _HTTP response splitting attack in WebSphere Application Server (CVE-2015-2017) _
Principal Product and Version(s)
| Affected Supporting Product and Version(s)
—|—
WebSphere Remote Server
V6.1, V6.2, 6.2.1, 7.0, 7.1, 7.1.1, 7.1.2, 8.5| WebSphere Application Server
V6.1, 7.0, 8.0, 8.5, 8.5.5