IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by a denial of service (CVE-2025-36097)

Authors: Created by IBM

IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by a denial of service.This affects WebSphere Liberty with the jsonp-1.0, jsonp-1.1, or jsonp-2.0 features enabled. CVEID: CVE-2025-36097 ^[1]
DESCRIPTION: IBM WebSphere Application Server and WebSphere Application Server Liberty are vulnerable to a denial of service, caused by a stack-based overflow. An attacker can send a specially crafted request that cause the server to consume...

Just published by IBM: Read more