CVE Catalog

CVE-2026-8835

High
Published: Translated: NVD NIST

Summary

IBM HTTP Server versions 8.5 and 9.0 are vulnerable to invalid pointer dereference. A privileged user authenticated to the Administration Server could exploit this vulnerability to expose sensitive information or cause a denial of service.

Risk Assessment

This vulnerability could lead to the exposure of confidential data or disruption of server operations, impacting service availability within the organization.

Recommendation

It is recommended to update the IBM HTTP Server to the latest version to mitigate this vulnerability and to monitor logs for potential exploitation attempts.

Original NVD description (English source)

IBM HTTP Server 8.5, and 9.0 is vulnerable to invalid pointer dereference. A privileged user, authenticated to the Administration Server, could exploit this vulnerability to expose sensitive information or cause a denial of service.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS