CWE-443: DEPRECATED: HTTP response splitting
This weakness can be found at CWE-113.
Last updated
Overview
CWE-443 (DEPRECATED: HTTP response splitting) is a base-level software weakness catalogued by MITRE in the Common Weakness Enumeration (CWE). It describes a recurring type of mistake that can lead to exploitable security vulnerabilities.
Real-world CVEs
1 recorded CVEs are caused by CWE-443 (DEPRECATED: HTTP response splitting). The highest-severity and most recent are shown first. 1 new CWE-443 CVE has been recorded so far in 2026.
Frequently asked questions
Common questions about CWE-443.
- What is CWE-443?
- This weakness can be found at CWE-113.
- What CVEs are caused by CWE-443?
- 1 recorded CVEs are attributed to CWE-443, including CVE-2026-33523.
- Is CWE-443 actively exploited?
- 1 recorded CVEs are caused by CWE-443; none are currently in CISA's KEV catalog of actively exploited flaws.
References
- MITRE CWE definition (CWE-443) (opens in a new tab)
- CWE-443 vulnerabilities on NVD (opens in a new tab)
- Learn: What is a CWE?
Weakness data is sourced from the MITRE CWE catalog (v4.20). CVE associations are aggregated and kept current by RadicalNotion.AI.
Stay ahead of CWE-443
Get alerted the moment a new CWE-443 vulnerability affects your stack, with AI-written analysis, severity context, and remediation guidance.