IBM WebSphere Application Server Remote Code Execution Vulnerability

Release Date: 27 Jun 2025

RISK: Medium Risk

TYPE: Servers - Internet App Servers

A vulnerability was identified in IBM WebSphere Application Server. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.

---

Impact

• Remote Code Execution

---

System / Technologies affected

• IBM WebSphere Application Server 8.5
• IBM WebSphere Application Server 9.0

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://www.ibm.com/support/pages/node/7237967

---

Vulnerability Identifier

• CVE-2025-36038

---

Source

• IBM

---

Related Link

• https://www.ibm.com/support/pages/node/7237967