CVE-2016-5331
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2016-5331
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
CRLF injection vulnerability in VMware vCenter Server 6.0 before U2 and ESXi 6.0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
VMware vCenter Server和ESXi CRLF注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
VMware vCenter Server和ESXi都是美国威睿(VMware)公司的产品。前者是一套服务器和虚拟化管理软件,后者是一套可直接安装在物理服务器上的服务器虚拟化平台。 VMware vCenter Server 6.0 U2之前的版本和ESXi 6.0版本中存在CRLF注入漏洞。远程攻击者可利用该漏洞注入任意HTTP头,实施HTTP响应拆分攻击。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2016-5331
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2016-5331
Please Login to view more intelligence information
- http://www.vmware.com/security/advisories/VMSA-2016-0010.htmlx_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2016-5331
Same Patch Batch · n/a · 2016-08-08 · 27 CVEs total
| CVE-2016-5330 | 多款VMware产品不可信搜索路径漏洞 | |
| CVE-2016-6486 | Siemens SINEMA Server 安全漏洞 | |
| CVE-2016-5792 | Moxa SoftCMS SQL注入漏洞 | |
| CVE-2016-4374 | HPE Release Control 安全漏洞 | |
| CVE-2016-1478 | Cisco IOS 拒绝服务漏洞 | |
| CVE-2016-1474 | Cisco Prime Infrastructure 安全漏洞 | |
| CVE-2016-1468 | Cisco TelePresence Video Communication Server Expressway 命令注入漏洞 | |
| CVE-2016-1466 | Cisco Unified Communications Manager IM and Presence Service 拒绝服务漏洞 | |
| CVE-2016-1430 | Cisco RV180和RV180W设备安全漏洞 | |
| CVE-2016-1429 | Cisco RV180和RV180W设备目录遍历漏洞 | |
| CVE-2015-6397 | Cisco RV110W、RV130W和RV215W设备安全漏洞 | |
| CVE-2015-6396 | Cisco RV110W、RV130W和RV215W设备安全漏洞 | |
| CVE-2016-5878 | IBM FileNet WorkPlace 开放重定向漏洞 | |
| CVE-2016-0266 | IBM AIX 信息泄露漏洞 | |
| CVE-2016-3059 | IBM Tivoli Storage Manager for Databases 本地信息泄露漏洞 | |
| CVE-2016-3054 | IBM FileNet Workplace 跨站脚本漏洞 | |
| CVE-2016-2989 | IBM WebSphere Portal Connections Portlets 开放重定向漏洞 | |
| CVE-2016-2960 | IBM WebSphere Application Server 拒绝服务漏洞 | |
| CVE-2016-2925 | IBM WebSphere Portal 跨站脚本漏洞 | |
| CVE-2016-2914 | IBM Rational Publishing Engine 任意文件上传漏洞 |
Showing top 20 of 27 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out- - CVE-2026-8187
Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption - CVE-2026-6667
PgBouncer missing authorization check in KILL_CLIENT admin c - CVE-2026-6666
PgBouncer crash in kill_pool_logins_server_error - CVE-2026-6665
PgBouncer buffer overflow in SCRAM
V. Comments for CVE-2016-5331
No comments yet