CVE-2025-36047
published 2025-08-14CVE-2025-36047: IBM WebSphere Application Server Liberty 18.0.0.2 through 25.0.0.8 is vulnerable to a denial of service, caused by sending a specially-crafted request. A…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
IBM WebSphere Application Server Liberty 18.0.0.2 through 25.0.0.8 is vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume memory resources.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | websphere_application_server | >= 18.0.0.2 < 25.0.0.9 | 25.0.0.9 |
| ibm | websphere_application_server_liberty | 18.0.0.2 – 25.0.0.8 | — |