CVE-2026-8854

Summary

IBM HTTP Server 8.5, and 9.0 is vulnerable to denial of service via the optional module mod_mem_cache.

Affected Software

VendorProductVersion RangeStatus
IBMHTTP Server8.5.0 <= Interim Fix 002affected
IBMHTTP Server9.0affected

Weaknesses

  • CWE-825: CWE-825 Expired Pointer Dereference

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References