CVE-2025-14914 — Vulnetix

CVE-2025-14914 PUBLISHED CVSS 7.599999904632568 HIGH

IBM WebSphere Application Server Liberty 17.0.0.3 through 26.0.0.1 could allow a privileged user to upload a zip archive containing path traversal sequences resulting in an overwrite of files leading to arbitrary code execution.

EPSS 0.02% · 3.2th percentile

Risk Scores

CVSS v3.1

7.599999904632568

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H

EPSS Score

0.02%

3.2th percentile

Affected Products

Vendor	Product	Versions
ibm	websphere_application_server	17.0.0.3
IBM	WebSphere Application Server Liberty	17.0.0.3

Timeline

Jan 28, 2026 PoC Published
Jan 30, 2026 CVE Published
Feb 2, 2026 PoC Published
Feb 2, 2026 PoC Published
Feb 3, 2026 EPSS Score
Feb 5, 2026 EPSS Score
Feb 7, 2026 EPSS Score
Feb 10, 2026 EPSS Score
Feb 12, 2026 EPSS Score
Feb 13, 2026 PoC Published
Feb 14, 2026 EPSS Score
Feb 16, 2026 EPSS Score

References

https://www.ibm.com/support/pages/node/7258224 vendor-advisory
https://www.ibm.com/support/pages/node/7259945 advisory
https://www.ibm.com/support/pages/node/7259445 advisory
https://www.ibm.com/support/pages/node/7260350 advisory
https://www.ibm.com/support/pages/node/7260100 advisory
https://www.ibm.com/support/pages/node/7260392 advisory
https://www.ibm.com/support/pages/node/7260349 advisory
https://www.ibm.com/support/pages/node/7259961 advisory
https://www.ibm.com/support/pages/node/5691194 advisory
https://www.ibm.com/support/pages/node/7258104 advisory
https://www.ibm.com/support/pages/node/7258234 advisory
https://www.ibm.com/support/pages/node/7258110 advisory
https://www.ibm.com/support/pages/node/7257910 advisory
https://www.ibm.com/support/pages/node/7257899 advisory
https://www.ibm.com/support/pages/node/7258042 advisory
https://www.ibm.com/support/pages/node/7257904 advisory
https://www.ibm.com/support/pages/node/7257903 advisory
https://www.ibm.com/support/pages/node/7257901 advisory
https://www.ibm.com/support/pages/node/7257898 advisory
https://www.ibm.com/support/pages/node/7257900 advisory

…and 8 more

Open in Interactive Console →