NVD CRITICAL: CVE-2026-8855 — IBM HTTP Server 8.5, and 9.0 is vulnerable to remote code execution and denial o...

Tuesday, May 26, 2026 at 06:16 PM UTC·Source: NIST NVD

Updated: Wednesday, May 27, 2026 at 11:00 AM UTC

Executive Summary

IBM HTTP Server 8.5, and 9.0 is vulnerable to remote code execution and denial of service in configurations with TLS mutual authentication (client authentication).

Analysis

IBM HTTP Server 8.5, and 9.0 is vulnerable to remote code execution and denial of service in configurations with TLS mutual authentication (client authentication). CVSS Score: 8.1. Published: 2026-05-26T18:16:57.170.

Indicators of Compromise (1)

CVE (1)

CVE-2026-8855

NVD MITRE CVE

Source Attribution

Originally published by NIST NVD on May 26, 2026. Verified by: NIST.

Related Threats

MEDIUMVulnerabilityNEW

PayWallet expands payout capabilities with TerraPay integration

TerraPay, a global money movement company, has partnered with PalWallet, a fintech infrastructure provider focused on stablecoin settlement, global payments infrastructure and embedded financial services, to help businesses move money across borders faster and more efficiently.

Just nowFinextra

MEDIUMVulnerabilityNEW

UK Payments Initiative launches to challenge Visa and Mastercard stranglehold

The UK Payments Initiative, a new company formed with the backing of the UK's biggest banks, has gone live, with the aim of undermining the dominance of US card networks in payments.

17m agoFinextra

MEDIUMVulnerabilityNEW

Meta AI Hands Over High-Profile Instagram Accounts to Hackers

Exploiting a confused deputy weakness, the hackers simply asked the chatbot to link the account to a new email address. The post Meta AI Hands Over High-Profile Instagram Accounts to Hackers appeared first on SecurityWeek .

19m agoSecurityWeek