CVE-2012-3300IBM Websphere Commerce vulnerability

CWE-3994 documents4 sources
Severity
2.6LOWNVD
EPSS
0.6%
top 30.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Websphere Commerce
Timeline
PublishedSep 25
Latest updateMay 17

Description

IBM WebSphere Commerce 7.0 before 7.0.0.6, when persistent sessions and personalization IDs are enabled, allows remote attackers to cause a denial of service (resource consumption) via unspecified vectors.

CVSS vector

AV:N/AC:H/C:N/I:N/A:PExploitability: 4.9 | Impact: 2.9

Affected Packages1 packages

NVDibm/websphere_commerce6 versions+5

🔴Vulnerability Details

2
GHSA
GHSA-x74m-v27f-v796: IBM WebSphere Commerce 72022-05-17
CVEList
CVE-2012-3300: IBM WebSphere Commerce 72012-09-25

📋Vendor Advisories

1
Microsoft
NetLogon Elevation of Privilege Vulnerability2016-08-09
CVE-2012-3300 — IBM Websphere Commerce vulnerability | cvebase