Description
IBM WebSphere Application Server - Liberty 22.0.0.11 through 26.0.0.5 IBM WebSphere Application Server Liberty could allow a remote attacker to bypass security under limited conditions by exploiting a specific timing window.
Published: 2026-05-27
Score: 4.4 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

IBM WebSphere Application Server Liberty versions 22.0.0.11 through 26.0.0.5 contain a timing‑based security bypass that could allow a remote attacker to circumvent configured security controls under limited conditions. The vulnerability exploits a specific window where a security check is not correctly enforced, potentially allowing the attacker to gain privileges or access resources they should not normally reach. The weakness reflects a race condition that requires precise timing to succeed, making exploitation more complex than a simple code injection or privilege escalation flaw.

Affected Systems

The vulnerability affects IBM WebSphere Application Server – Liberty in the 22.0.0.11 through 26.0.0.5 release range, specifically when using the appSecurity‑3.0, appSecurity‑4.0 or appSecurity‑5.0 feature(s). These are the only configurations documented to be susceptible; other feature sets are not known to be affected.

Risk and Exploitability

The CVSS score of 4.4 categorizes the flaw as moderate severity. No EPSS score is available, so the likelihood of exploitation is uncertain but not considered high. The vulnerability is not listed in the CISA KEV catalog, which suggests no publicly known exploits have been observed. Successful exploitation would require a remote attacker with network access to the Liberty instance and precise timing to win the race condition. Because the flaw requires coordinated timing rather than arbitrary input, operational attack complexity is elevated, reducing the probability of successful attacks compared to simpler flaws.

Generated by OpenCVE AI on May 27, 2026 at 17:50 UTC.

Remediation

Vendor Solution

IBM strongly recommends addressing the vulnerability now by applying a currently available interim fix or fix pack that contains the fix for APAR PH70798. To determine if a feature is enabled for IBM WebSphere Application Server Liberty, refer to How to determine if Liberty is using a specific feature https://www.ibm.com/support/pages/node/6553910 .  For IBM WebSphere Application Server Liberty 22.0.0.11 - 26.0.0.5 using the appSecurity-3.0, appSecurity-4.0 or appSecurity-5.0 feature(s):  · Upgrade to minimal fix pack levels as required by the interim fix and then apply the Interim Fix that resolves PH70798 https://www.ibm.com/support/pages/node/7273239 --OR-- · Apply Liberty Fix Pack 26.0.0.6 or later (targeted availability 3Q2026).  Additional interim fixes may be available and linked off the interim fix download page.

OpenCVE Recommended Actions

  • Verify that Liberty is using one of the appSecurity‑3.0, appSecurity‑4.0 or appSecurity‑5.0 features and that the application server is currently running a vulnerable version (22.0.0.11 through 26.0.0.5).
  • Upgrade to the minimum required intermediate fix pack level and then apply the interim fix for APAR PH70798, following IBM’s download page instructions.
  • If the server can be upgraded, install Liberty Fix Pack 26.0.0.6 or later, which contains the permanent remediation for this issue.

Generated by OpenCVE AI on May 27, 2026 at 17:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-362

Wed, 27 May 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 27 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description IBM WebSphere Application Server - Liberty 22.0.0.11 through 26.0.0.5 IBM WebSphere Application Server Liberty could allow a remote attacker to bypass security under limited conditions by exploiting a specific timing window.
Title IBM WebSphere Application Server Liberty is affected by a security bypass vulnerability
First Time appeared Ibm
Ibm websphere Application Server Liberty
CPEs cpe:2.3:a:ibm:websphere_application_server___liberty:22.0.0.11:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_application_server___liberty:26.0.0.5:*:*:*:*:*:*:*
Vendors & Products Ibm
Ibm websphere Application Server Liberty
References
Metrics cvssV3_1

{'score': 4.4, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

Ibm Websphere Application Server Liberty
cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published:

Updated: 2026-05-27T14:43:52.965Z

Reserved: 2026-04-03T21:59:13.972Z

Link: CVE-2026-5516

cve-icon Vulnrichment

Updated: 2026-05-27T14:43:46.126Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:34.257

Modified: 2026-05-27T14:53:51.833

Link: CVE-2026-5516

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T18:00:15Z

Weaknesses