VulnerableCode Vulnerability Details - VCID-u9mc-kjy8-quhc

Search for vulnerabilities

Vulnerability details: VCID-u9mc-kjy8-quhc

Essentials
Severities (15)
References (4)
Severity details (0)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-u9mc-kjy8-quhc
Aliases	CVE-2016-2216
Summary	nodejs: Response splitting vulnerability using Unicode characters
Status	Published
Exploitability	0.5
Weighted Severity	0.0
Risk	None
Affected and Fixed Packages	Package Details

Weaknesses (1)

CWE-113

Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting')

System	Score	Found at
epss	0.01772	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.01772	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.01772	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.01772	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.01772	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.02105	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.02105	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.02105	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.02105	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.02105	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.02105	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.02105	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.02105	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.02105	https://api.first.org/data/v1/epss?cve=CVE-2016-2216
epss	0.02105	https://api.first.org/data/v1/epss?cve=CVE-2016-2216

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-2216.json
		https://api.first.org/data/v1/epss?cve=CVE-2016-2216
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2216
1306203		https://bugzilla.redhat.com/show_bug.cgi?id=1306203

No exploits are available.

There are no known vectors.

Exploit Prediction Scoring System (EPSS)

Percentile	0.81974
EPSS Score	0.01772
Published At	Aug. 1, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T11:01:38.552792+00:00	RedHat Importer	Import	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-2216.json	37.0.0