After discussing your thread with our Support Engineers, they have asked that you submit a Support Request so that they may discuss this with you offline.
Please reference this PSC post in your Support Request and that you were advised to open a SR by our Engineers. Then please come back and comment here with your Support Request ID so that we may track for you.
All the modern application servers are inherently have protection for response splitting attacks. If we insert a header with value that contains CRLF characters the servers automatically replace them with a space character.