- Product: IBM WebSphere Application Server
- Vulnerabilities: 3 flaws (CVE-2026-11712, CVE-2026-11708, CVE-2026-11595)
- Highest severity: 9.3 (Critical · CVSSv3)
- Worst impact: is affected by a cross-site scripting
- Status: No confirmed exploitation yet
- Action: Update IBM WebSphere to the latest version now!
| CVE | CVSS | Type | Status |
|---|---|---|---|
| CVE-2026-11712 | 9.3 | CWE-79 | Not exploited |
| CVE-2026-11708 | 9.3 | CWE-79 | Not exploited |
| CVE-2026-11595 | 4.3 | CWE-22 | Not exploited |
IBM discovered three security flaws affecting WebSphere Application Server versions 9.0 and 8.5. These IBM WebSphere vulnerabilities include high-severity cross-site scripting (XSS) and path traversal issues. Administrators should apply the recommended interim fixes immediately to secure their environments.
Why It Matters
These flaws compromise the administrative console help system. Attackers could steal sensitive information or execute malicious scripts in a user’s browser. A successful attack endangers the entire application server environment. System administrators face high risks if they interact with crafted links.
How the Attack Works
The flaws reside within the administrative console’s integrated help system. First, CVE-2026-11712 and CVE-2026-11708 act as XSS vulnerabilities. Attackers exploit these by injecting malicious scripts into web pages generated by the help system. Second, CVE-2026-11595 functions as a path traversal vulnerability. A remote attacker uses this flaw to bypass directory restrictions and read sensitive files on the server.
Exploitation Status
Currently, no active exploitation in the wild has been confirmed. No public proof-of-concept exploit code exists.
Affected Versions
The flaws impact WebSphere Application Server version 9.0 and version 8.5. Install counts remain unconfirmed by the vendor.
Patch or Mitigation Steps
IBM issued an official security advisory to address these issues. Fixing these IBM WebSphere vulnerabilities requires installing the interim fix for APAR PH71756.
For version 9.0, upgrade to the minimal required fix pack and apply the interim fix. Alternatively, install Fix Pack 9.0.5.29. For version 8.5, apply the interim fix over the required fix pack. Alternatively, install Fix Pack 8.5.5.31.
IBM clearly states, “IBM strongly recommends addressing the vulnerability now by applying a currently available interim fix or fix pack.”
Support Our Threat Intelligence
If you find our CVE report and cybersecurity news helpful, consider supporting our work.