CVE-2026-10845
IBM WebSphere Application Server is affected by an authentication bypass vulnerability
CVSS Score
7.3
EPSS Score
0.0%
EPSS Percentile
0th
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to bypass authentication and gain unauthorized access to JAX-WS applications.
| CWE | CWE-287 |
| Vendor | ibm |
| Product | websphere application server |
| Published | Jun 22, 2026 |
| Last Updated | Jun 22, 2026 |
Stay Ahead of the Next One
Get instant alerts for ibm websphere application server
Be the first to know when new high vulnerabilities affecting ibm websphere application server are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
IBM / WebSphere Application Server
8.5.0 ≤ 7.0.2 Interim Fix 035 9.0.0 ≤ 7.0.3 Interim Fix 017