Authors: Created by IBM


IBM WebSphere Application Server Liberty is affected by a denial of service with the jsonp-2.1 feature enabled. CVEID:  CVE-2026-9563[1]
DESCRIPTION:  In Eclipse Parsson published Maven Central artifacts before version 1.1.8, the JSON parser did not enforce a default maximum on the number of characters consumed while parsing a single JSON document.Applications that parse attacker- controlled JSON can be forced to consume excessive CPU and memory...

Just published by IBM: Read more