Critical
CVSS 9.0
Overview
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially crafted sequence of serialized objects.
CVE-2025-36038
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to ex...
Risk analysis
This vulnerability is rated 🔴 CRITICAL.
- CVSS: 9.0 (CRITICAL)
- Detected tags: rce (tag impact: VERY HIGH)
Recommended actions:
- Patch/upgrade immediately (remote code execution).
- Reduce exposure (WAF/segmentation), minimize attack surface.