CVE-2026-3621

HIGH NVD

CVSS Score 7.5

Severity HIGH

Published Apr 23, 2026

Vendor unknown

Description

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.4 IBM WebSphere Application Server Liberty is vulnerable to identity spoofing under limited conditions when an application is deployed without authentication and authorization configured.

References

https://www.ibm.com/support/pages/node/7270437