CVE-2026-9071

HIGH NVD

CVSS Score 7.5

Severity HIGH

Published Jun 22, 2026

Vendor unknown

Description

IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 are vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume memory resources.

References

https://www.ibm.com/support/pages/node/7276579