Authors: Created by IBM

IBM WebSphere Application Server Liberty is affected by a denial of service with the servlet-3.1, servlet-4.0, servlet-5.0, or servlet-6.0 feature with the HTTP/2 protocol enabled. CVEID: CVE-2025-36047^[1]
DESCRIPTION: IBM WebSphere Application Server Liberty is vulnerable to a denial of service, caused by sending a specially-crafted request.A remote attacker could exploit this vulnerability to cause the server to consume memory resources.
CWE: CWE-770:Allocation ...

Just published by IBM: Read more