CVE-2009-2094 — IBM Websphere Commerce vulnerability

3 documents3 sources

Severity

1.5LOWNVD

EPSS

0.1%

top 83.83%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Websphere Commerce

Timeline

PublishedAug 13

Latest updateMay 2

Description

Unspecified vulnerability in IBM WebSphere Commerce 6.0 Enterprise before 6.0.0.8, when trace is enabled, allows local users to obtain sensitive information via unknown vectors.

CVSS vector

AV:L/AC:M/C:P/I:N/A:NExploitability: 2.7 | Impact: 2.9

Affected Packages1 packages

▶NVDibm/websphere_commerce6 versions+5

Patches

Patch: publib.boulder.ibm.com ↗Patch: publib.boulder.ibm.com ↗

🔴Vulnerability Details

GHSA

GHSA-xm94-78r5-v85h: Unspecified vulnerability in IBM WebSphere Commerce 6↗2022-05-02

▶

CVEList

CVE-2009-2094: Unspecified vulnerability in IBM WebSphere Commerce 6↗2009-08-13

▶