Ibm Http_server

11 CVEs affecting Ibm Http_server. Latest disclosed: 2026-05-26. Critical: 1, High: 6.

Top CVEs affecting Ibm Http_server
CVESeverityScorePublishedSummary
CVE-2026-9170Critical9.82026-05-26IBM HTTP Server 8.5, and 9.0
CVE-2026-8855High8.12026-05-26IBM HTTP Server 8.5, and 9.0 is vulnerable to remote code execution and denial of service in configurations with TLS mutual authentication (client authenticati…
CVE-2026-8834High8.02026-05-26IBM HTTP Server 8.5, and 9.0 contains a buffer overflow vulnerability. A privileged user, authenticated to the Administration Server, could exploit this vulner…
CVE-2026-8856High7.72026-05-26IBM HTTP Server 8.5, and 9.0 is vulnerable to denial of service in configurations where an attacker has write access to parts of the server configuration.
CVE-2026-8854High7.52026-05-26IBM HTTP Server 8.5, and 9.0 is vulnerable to denial of service via the optional module mod_mem_cache.
CVE-2026-8850High7.52026-05-26IBM HTTP Server 8.5, and 9.0 is vulnerable to denial of service via the optional module mod_ibm_upload.
CVE-2026-8835High7.32026-05-26IBM HTTP Server 8.5, and 9.0 is vulnerable to invalid pointer dereference. A privileged user, authenticated to the Administration Server, could exploit this vu…
CVE-2026-8852Medium6.22026-05-26IBM HTTP Server 8.5, and 9.0 is vulnerable to denial of service via the optional module mod_fastcgi module.
CVE-2015-49472015-09-15Stack-based buffer overflow in the Administration Server in IBM HTTP Server 6.1.0.x through 6.1.0.47, 7.0.0.x before 7.0.0.39, 8.0.0.x before 8.0.0.12, and 8.5…
CVE-2012-59552012-12-20Unspecified vulnerability in the IBM HTTP Server component 5.3 in IBM WebSphere Application Server (WAS) for z/OS allows remote attackers to execute arbitrary…
CVE-2011-13602011-10-28Multiple cross-site scripting (XSS) vulnerabilities in IBM HTTP Server 2.0.47 and earlier, as used in WebSphere Application Server and other products, allow re…