IBM HTTP Server is affected by multiple vulnerabilities due to libexpat (CVE-2026-32776, CVE-2026-32777, CVE-2026-32778)

Authors: Created by IBM

IBM HTTP Server used by IBM WebSphere Application Server is affected by multiple vulnerabilities due to libexpat. CVEID: CVE-2026-32776 ^[1]
DESCRIPTION: libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content.
CWE: CWE-476:NULL Pointer Dereference ^[2]
...

Just published by IBM: Read more