Buffer Overflow Vulnerability in IBM HTTP Server
CVE-2026-8834

8HIGH

Key Information:

Vendor: IBM
Status: Http Server
Vendor: CVE Published:; 26 May 2026

What is CVE-2026-8834?

IBM HTTP Server versions 8.5 and 9.0 are affected by a buffer overflow vulnerability. An authenticated privileged user on the Administration Server can exploit this vulnerability to remotely execute code or trigger a denial of service. This situation highlights the importance of security best practices and the need for timely updates.

Affected Version(s)

HTTP Server 8.5.0

HTTP Server 9.0

References

https://www.ibm.com/support/pages/node/7274065

vendor-advisorypatch

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 26, 2026
Vulnerability Reserved
May 18, 2026

CVE-2026-8834 Data

JSON