Known vulnerabilities in IBM Corporation WebSphere Hybrid Edition

[]

Known vulnerabilities in IBM Corporation WebSphere Hybrid Edition

Vendor: IBM Corporation

Website: https://www.ibm.com/us-en

Total Security Bulletins: 15

Security bulletins (15)

Secuity bulletin	Severity	Status	Published
SB2026040817: Prototype pollution in IBM WebSphere Hybrid Edition	Medium	Patched	08.04.2026
SB2026040332: Weak password requirements in IBM WebSphere Hybrid Edition	Low	Patched	03.04.2026
SB2026040331: Server-side request forgery in IBM WebSphere Hybrid Edition	Low	Patched	03.04.2026
SB2026040330: Information disclosure in IBM WebSphere Hybrid Edition	Low	Patched	03.04.2026
SB2026031712: Improper access control in IBM WebSphere Hybrid Edition	Medium	Patched	17.03.2026
SB2026021307: Path traversal in IBM WebSphere Hybrid Edition	Low	Patched	13.02.2026
SB2025121820: Cross-site scripting in IBM WebSphere Hybrid Edition	Medium	Patched	18.12.2025
SB2025101327: Allocation of resources without limits or throttling in IBM WebSphere Hybrid Edition	Low	Patched	13.10.2025
SB2025091515: Use of insufficiently random values in IBM WebSphere Hybrid Edition	Medium	Patched	15.09.2025
SB2025090412: Resource exhaustion in IBM WebSphere Hybrid Edition	Medium	Patched Public exploit	04.09.2025
SB2025082926: Improper certificate validation in IBM WebSphere Hybrid Edition	Medium	Patched	29.08.2025
SB2025082922: Privilege Chaining in IBM WebSphere Hybrid Edition	High	Patched	29.08.2025
SB2025073045: Interpretation Conflict in IBM WebSphere Hybrid Edition	Medium	Patched	30.07.2025
SB2025072907: Stack-based buffer overflow in IBM WebSphere Hybrid Edition	High	Patched	29.07.2025
SB2025071411: Deserialization of untrusted data in IBM WebSphere Hybrid Edition	Critical	Patched	14.07.2025