VYPR
High severity7.5NVD Advisory· Published Jul 16, 2025· Updated Jun 17, 2026

CVE-2025-36097

CVE-2025-36097

Description

IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 are vulnerable to a denial of service, caused by a stack-based overflow. An attacker can send a specially crafted request that cause the server to consume excessive memory resources.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:ibm:websphere_application_server:17.0.0.3:*:*:*:liberty:*:*:*+ 2 more
    • cpe:2.3:a:ibm:websphere_application_server:17.0.0.3:*:*:*:liberty:*:*:*range: 17.0.0.3
    • cpe:2.3:a:ibm:websphere_application_server:9.0:*:*:*:*:*:*:*range: 9.0
    • (no CPE)range: 9.0, 17.0.0.3 - 25.0.0.7
  • Range: 17.0.0.3 - 25.0.0.7

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.