CVE-2026-4410

IBM WebSphere Application Server - Liberty 19.0.0.7 through 26.0.0.5 and IBM WebSphere Application Server 9.0, and 8.5 and WebSphere Application…

MEDIUMMonitor

Published:May 27, 2026(5 days ago)

Modified:May 27, 2026

Adjacent NetworkNo Interaction

Vulnerability Description

IBM WebSphere Application Server - Liberty 19.0.0.7 through 26.0.0.5 and IBM WebSphere Application Server 9.0, and 8.5 and WebSphere Application Server Liberty are vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume memory resources.

Attack Characteristics

ADJACENT_NETWORKHigh ComplexityLow PrivilegesNo User Interaction

🤖

AI analysis not yet available

Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.

Timeline

Published
CVE disclosed publicly
May 27, 20265 days ago
Last Modified
Most recent update
May 27, 20265 days ago
Indexed to CVEInsight
Added to this platform
May 27, 20264 days ago

References

https://www.ibm.com/support/pages/node/7273424

CVSS Score

v3.1

4.8/ 10.0

MEDIUM

AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

At a Glance

Affected Products

References

CVE-2026-4410

Vulnerability Description

Attack Characteristics

Timeline

References

CVSS Score

At a Glance

Official Sources

CVSS v3 Vector

Impact Analysis

CVE-2026-4410

✦ Vulnerability Description

Attack Characteristics

Timeline

References

CVSS Score

At a Glance

Official Sources

CVSS v3 Vector

Impact Analysis

Vulnerability Description