CVE-2026-9006 | IBM WebSphere Application Server up to 8.5/9.0 server-side request forgery (EUVD-2026-38252 / WID-SEC-2026-2001)
A vulnerability was found in IBM WebSphere Application Server up to 8.5/9.0. It has been declared as critical. Affected by this issue is some unknown functionality. The manipulation results in server-side request forgery.
This vulnerability is cataloged as CVE-2026-9006. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.