CVE-2026-9330 - CERT CVE

  1. CVE-2026-9330

ID CVE-2026-9330
Sažetak IBM WebSphere Application Server 9.0, and 8.5 is affected by an improper validation of user-supplied data during deserialization using the SAML Web Single Sign-On component. This could result in remote code execution via a crafted HTTP request when combined with a suitable gadget chain.
Reference
CVSS
Base: 8.5
Impact: 6.0
Exploitability:1.8
Pristup
VektorSloženostAutentikacija
NETWORK HIGH LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH HIGH
CVSS vektor CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Zadnje važnije ažuriranje 04-06-2026 - 16:52
Objavljeno 01-06-2026 - 19:16