Websphere application server
This hub aggregates every CVE we track for Websphere application server, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
411
CVEs tracked
45
Critical
75
High
1
In CISA KEV
Severity distribution
MEDIUM249HIGH75CRITICAL45LOW42
Monthly trend
2
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
1
2
6
0
2024-082026-07
Latest CVEs
The 15 most recently published vulnerabilities affecting Websphere application server.
- CVE-2026-11541IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by HTTP request smuggling7.4
- CVE-2026-11594IBM WebSphere Application Server is affected by multiple cross-site scripting vulnerabilities8.5
- CVE-2026-11595IBM WebSphere Application Server is affected by a Path Traversal vulnerability4.3
- CVE-2026-11708IBM WebSphere Application Server is affected by a cross-site scripting vulnerability9.3
- CVE-2026-11712IBM WebSphere Application Server is affected by a cross-site scripting vulnerability9.3
- CVE-2026-10845IBM WebSphere Application Server is affected by an authentication bypass vulnerability7.3
- CVE-2026-5516IBM WebSphere Application Server Liberty is affected by a security bypass vulnerability4.4
- CVE-2026-4410IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by a denial of service4.8
- CVE-2026-3621IBM WebSphere Application Server Liberty is affected by identity spoofing7.5
- CVE-2026-1561IBM WebSphere Application Server Liberty Server-Side Request Forgery5.4
- CVE-2023-50314IBM WebSphere Application Server Libery information disclosure5.3
- CVE-2023-50315IBM WebSphere Application Server information disclosure5.3
- CVE-2024-35154IBM WebSphere Application Server code execution7.2
- CVE-2024-35153IBM WebSphere Application Server cross-site scripting4.8
- CVE-2023-50313IBM WebSphere Application Server information disclosure5.3
Product normalization is registry-driven with AI assist and human review. How it works