Medium severity5.3NVD Advisory· Published May 7, 2016· Updated May 6, 2026

CVE-2016-0902

Description

CRLF injection vulnerability in EMC RSA Authentication Manager before 8.1 SP1 P14 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

Affected products

EMC Corporation/Rsa Authentication Manager
cpe:2.3:a:emc:rsa_authentication_manager:*:sp1:*:*:*:*:*:*
Range: <=8.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.com/files/136994/RSA-Authentication-Manager-XSS-HTTP-Response-Splitting.htmlnvd
seclists.org/bugtraq/2016/May/23nvd
www.securitytracker.com/id/1035755nvd

News mentions

No linked articles in our index yet.

cvss	0.345
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000