Download
Downloadable File
| File link | File size | File description |
|---|---|---|
Abstract
IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by cross-site scripting (CVE-2025-12635)
Download Description
PH68817 resolves the following problem:
ERROR DESCRIPTION:
Confidential for Security Integrity interim fix CVE-2025-12635.
PROBLEM SUMMARY:
Confidential for Security Integrity interim fix CVE-2025-12635.
PROBLEM CONCLUSION:
Confidential for CVE-2025-12635.
The fix for this APAR is targeted for inclusion in 26.0.0.1.
For more information, see Recommended Updates for WebSphere Application Server:
https://www.ibm.com/support/pages/node/715553
Prerequisites
None
Download Package
IMPORTANT NOTE: | WebSphere Application Server and Liberty fix access requires S&S Entitlement beginning in 2021. Use properly registered IDs to download the fixes in this table. Signature file is provided along with interim fix. See Verifying WebSphere Application Server release packages and Verifying Liberty release packages. |
IBM Installation Manager packages
| DOWNLOAD | RELEASE DATE | URL | |
|---|---|---|---|
| 25.0.0.12-WS-WLP-IFPH68817 | 25 November 2025 | FC | |
| 25.0.0.9-WS-WLP-IFPH68817 | 25 November 2025 | FC | |
| 25.0.0.6-WS-WLP-IFPH68817 | 17 December 2025 | FC |
Archive packages (no IM)
| DOWNLOAD | RELEASE DATE | URL | |
|---|---|---|---|
| 250012-wlp-archive-IFPH68817 | 25 November 2025 | FC | |
| 25009-wlp-archive-IFPH68817 | 25 November 2025 | FC | |
| 25006-wlp-archive-IFPH68817 | 17 December 2025 | FC |
Problems Solved
PH68817
Change History
17 December 2025 - 25.0.0.6 interim fix has been added
Technical Support
Contact IBM Support at https://www.ibm.com/mysupport/ or 1-800-IBM-SERV (US only).
Document Location
Worldwide
Problems (APARS) fixed
Problems (APARS) fixed
Was this topic helpful?
Document Information
Modified date:
17 December 2025
UID
ibm17253284