CVE-2026-8620

HIGH NVD

CVSS Score 7.5

Severity HIGH

Published May 26, 2026

Vendor unknown

Description

IBM Web Server Plug-ins for WebSphere Application Server and WebSphere Liberty 8.5, 9.0 IBM WebSphere Application Server and WebSphere Application Server Liberty are vulnerable to HTTP request smuggling in the Web Server Plug-ins through a specially crafted request.

References

https://www.ibm.com/support/pages/node/7274072