Vulnerability Details CVE-2026-11708
IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the administrative console's integrated help system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 12.1%
CVSS Severity
CVSS v3 Score 9.3
Products affected by CVE-2026-11708
-
cpe:2.3:a:ibm:websphere_application_server:8.5.5.25
-
cpe:2.3:a:ibm:websphere_application_server:9.0.0.0
-
cpe:2.3:a:ibm:websphere_application_server:9.0.5.19