Known Vulnerabilities for Websphere Application Server by Ibm

Listed below are 10 of the newest known vulnerabilities associated with "Websphere Application Server" by "Ibm".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2026-1561	IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is vulnerable t...	Not Provided	2026-03-25	2026-03-26
CVE-2025-14917	IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could provide w...	Not Provided	2026-03-25	2026-03-27
CVE-2025-14915	IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is affected by ...	Not Provided	2026-03-25	2026-03-27
CVE-2022-22477	IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed ...	6.1 - MEDIUM	2022-07-14	2022-07-20
CVE-2022-22476	IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.7 and Open Liberty are vulnerable to identity spoofing by an...	8.8 - HIGH	2022-07-08	2022-08-03
CVE-2022-22475	IBM WebSphere Application Server Liberty and Open Liberty 17.0.0.3 through 22.0.0.5 are vulnerable to identity spoofing by an...	6.5 - MEDIUM	2022-05-17	2023-08-08
CVE-2022-22473	IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to obtain sensitive information caused ...	5.3 - MEDIUM	2022-07-14	2023-08-08
CVE-2022-22393	IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.5 , with the adminCenter-1.0 feature configured, could allow...	6.5 - MEDIUM	2022-05-13	2022-05-23
CVE-2022-22365	IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0, with the Ajax Proxy Web Application (AjaxProxy.war) deployed, is vul...	5.9 - MEDIUM	2022-05-20	2022-06-02
CVE-2022-22310	IBM WebSphere Application Server Liberty 21.0.0.10 through 21.0.0.12 could provide weaker than expected security. A remote at...	6.5 - MEDIUM	2022-01-19	2023-08-08

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Ibm	Websphere Application Server	9.0.5.7	All	All	All
Application	Ibm	Websphere Application Server	9.0.5.6	All	All	All
Application	Ibm	Websphere Application Server	9.0.5.5	All	All	All
Application	Ibm	Websphere Application Server	9.0.5.5	All	All	All
Application	Ibm	Websphere Application Server	9.0.5.4	All	All	All
Application	Ibm	Websphere Application Server	9.0.5.3	All	All	All
Application	Ibm	Websphere Application Server	9.0.5.3	All	All	All
Application	Ibm	Websphere Application Server	9.0.5.2	All	All	All
Application	Ibm	Websphere Application Server	9.0.5.2	All	All	All
Application	Ibm	Websphere Application Server	9.0.5.1	All	All	All
Application	Ibm	Websphere Application Server	9.0.5.1	All	All	All
Application	Ibm	Websphere Application Server	9.0.5.1	All	All	All
Application	Ibm	Websphere Application Server	9.0.5.0	All	All	All
Application	Ibm	Websphere Application Server	9.0.0.9	All	All	All
Application	Ibm	Websphere Application Server	9.0.0.8	All	All	All
Application	Ibm	Websphere Application Server	9.0.0.7	All	All	All
Application	Ibm	Websphere Application Server	9.0.0.6	All	All	All
Application	Ibm	Websphere Application Server	9.0.0.5	All	All	All
Application	Ibm	Websphere Application Server	9.0.0.4	All	All	All
Application	Ibm	Websphere Application Server	9.0.0.3	All	All	All

Results limited to 20 most recent known configurations