CVE-2026-4410
- EPSS 0.5%
- Veröffentlicht 27.05.2026 12:54:48
- Zuletzt bearbeitet 01.06.2026 14:28:24
IBM WebSphere Application Server - Liberty 19.0.0.7 through 26.0.0.5 and IBM WebSphere Application Server 9.0, and 8.5 and WebSphere Application Server Liberty are vulnerable to a denial of service, caused by sending a specially-crafted request. A re...
CVE-2026-8633
- EPSS 0.85%
- Veröffentlicht 26.05.2026 17:19:55
- Zuletzt bearbeitet 27.05.2026 18:12:04
IBM Web Server Plug-ins for WebSphere Application Server and WebSphere Liberty 8.5, 9.0 IBM WebSphere Application Server and WebSphere Application Server Liberty are vulnerable to remote code execution in the Web Server Plug-ins, through a specially ...
CVE-2026-8620
- EPSS 0.28%
- Veröffentlicht 26.05.2026 17:15:00
- Zuletzt bearbeitet 02.06.2026 18:40:34
IBM Web Server Plug-ins for WebSphere Application Server and WebSphere Liberty 8.5, 9.0 IBM WebSphere Application Server and WebSphere Application Server Liberty are vulnerable to HTTP request smuggling in the Web Server Plug-ins through a specially ...
CVE-2026-3621
- EPSS 0.28%
- Veröffentlicht 22.04.2026 23:07:31
- Zuletzt bearbeitet 13.05.2026 20:24:13
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.4 IBM WebSphere Application Server Liberty is vulnerable to identity spoofing under limited conditions when an application is deployed without authentication and authorization configu...
CVE-2025-14917
- EPSS 0.36%
- Veröffentlicht 25.03.2026 20:13:55
- Zuletzt bearbeitet 30.03.2026 16:59:11
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could provide weaker than expected security when administering security settings.
CVE-2025-14915
- EPSS 0.5%
- Veröffentlicht 25.03.2026 20:12:27
- Zuletzt bearbeitet 30.03.2026 16:59:31
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is affected by privilege escalation. A privileged user could gain additional access to the application server.
CVE-2026-1561
- EPSS 0.28%
- Veröffentlicht 25.03.2026 20:10:10
- Zuletzt bearbeitet 30.03.2026 16:58:21
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is vulnerable to server-side request forgery (SSRF). This may allow remote attacker to send unauthorized requests from the system, potential...
CVE-2025-14923
- EPSS 0.17%
- Veröffentlicht 03.03.2026 19:47:25
- Zuletzt bearbeitet 04.03.2026 18:23:23
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.2 IBM WebSphere Application Server Liberty could provide weaker than expected security when using the Security Utility when administering security settings.
CVE-2025-13333
- EPSS 0.31%
- Veröffentlicht 17.02.2026 22:45:10
- Zuletzt bearbeitet 20.02.2026 16:49:01
IBM WebSphere Application Server 9.0, and 8.5 could provide weaker than expected security during system administration of security settings.
CVE-2025-14914
- EPSS 0.39%
- Veröffentlicht 02.02.2026 16:16:17
- Zuletzt bearbeitet 12.02.2026 21:16:54
IBM WebSphere Application Server Liberty 17.0.0.3 through 26.0.0.1 could allow a privileged user to upload a zip archive containing path traversal sequences resulting in an overwrite of files leading to arbitrary code execution.