CVE-2026-8856

Summary

IBM HTTP Server 8.5, and 9.0 is vulnerable to denial of service in configurations where an attacker has write access to parts of the server configuration.

Affected Software

VendorProductVersion RangeStatus
IBMHTTP Server8.5.0 <= Interim Fix 002affected
IBMHTTP Server9.0affected

Weaknesses

  • CWE-400: CWE-400 Uncontrolled Resource Consumption

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References