CVE-2026-8620
EUVD-2026-3192126.05.2026, 18:16
IBM Web Server Plug-ins for WebSphere Application Server and WebSphere Liberty 8.5, 9.0 IBM WebSphere Application Server and WebSphere Application Server Liberty are vulnerable to HTTP request smuggling in the Web Server Plug-ins through a specially crafted request.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| ibm | websphere_application_server | 8.5.0.0 ≤ 𝑥 < 8.5.5.30 |
| ibm | websphere_application_server | 8.5.0.0 ≤ 𝑥 < 8.5.5.30 |
| ibm | websphere_application_server | 9.0.0.0 ≤ 𝑥 < 9.0.5.28 |
| ibm | websphere_application_server | 9.0.0.0 ≤ 𝑥 < 9.0.5.28 |
𝑥
= Vulnerable software versions
Vulnerability Media Exposure