EUVD-2026-31939

🗓️ 26 May 2026 17:31:55Reported by EUVDType

IBM WebSphere plug-ins for Server and Liberty 8.5/9.0 expose denial of service and remote code execution via input validation.

Reporter	Title	Published	Views	Family All 14
IBM Security Bulletins	Security Bulletin:IBM HTTP Server shipped with IBM OpenPages is vulnerable to multiple vulnerabilities	23 Jun 202617:57	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM HTTP Server shipped with IBM DevOps Code ClearCase.	8 Jun 202605:18	–	ibm
IBM Security Bulletins	Security Bulletin: IBM HTTP Server is affected by multiple vulnerabilities	26 May 202618:38	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities have been identified in IBM HTTP Server shipped with IBM WebSphere Remote Server	28 May 202619:28	–	ibm
ATTACKERKB	CVE-2026-9170	26 May 202617:31	–	attackerkb
Circl	CVE-2026-9170	26 May 202619:03	–	circl
CNNVD	IBM Web Server Plug-ins for IBM WebSphere Application Server and IBM WebSphere Liberty 环境问题漏洞	26 May 202600:00	–	cnnvd
CVE	CVE-2026-9170	26 May 202617:31	–	cve
Cvelist	CVE-2026-9170 IBM HTTP Server is affected by multiple vulnerabilities	26 May 202617:31	–	cvelist
Tenable Nessus	IBM HTTP Server 8.5.0.0 < 8.5.5.30 / 9.0.0.0 < 9.0.5.29 Multiple Vulnerabilities (7274065)	28 May 202600:00	–	nessus

[
  {
    "enisaIdVendor": [
      {
        "id": "51075434-e162-33cb-a4d9-570acf8b95dc",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "64e1a293-172c-3c29-b910-b75ba21fcfab",
        "product": {
          "name": "Web Server Plug-ins for WebSphere Application Server and WebSphere Liberty",
          "vendor": {
            "name": "IBM"
          }
        },
        "product_version": "8.5, 9.0"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7274072

26 May 2026 17:31Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.17.5

EPSS0.00488