CVE-2026-8633
CriticalSummary
Web Server Plug-ins for IBM WebSphere Application Server and WebSphere Liberty versions 8.5 and 9.0 are vulnerable to remote code execution through a specially crafted request.
Risk Assessment
An attacker could exploit this vulnerability to remotely execute code on the server, potentially leading to serious security breaches within the organization.
Recommendation
It is recommended to update the Web Server Plug-ins to the latest version to mitigate the risks associated with this vulnerability.
Original NVD description (English source)
IBM Web Server Plug-ins for WebSphere Application Server and WebSphere Liberty 8.5, 9.0 IBM WebSphere Application Server and WebSphere Application Server Liberty are vulnerable to remote code execution in the Web Server Plug-ins, through a specially crafted request.

