CVE-2012-4855 — IBM Websphere Commerce vulnerability

3 documents3 sources

Severity

4.3MEDIUMNVD

EPSS

0.6%

top 29.74%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Websphere Commerce

Timeline

PublishedMar 5

Latest updateMay 13

Description

Unspecified vulnerability in the web services framework in IBM WebSphere Commerce 6.0 through 6.0.0.11 and 7.0 through 7.0.0.6 allows remote attackers to cause a denial of service (login outage) via unknown vectors.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

▶NVDibm/websphere_commerce19 versions+18

🔴Vulnerability Details

GHSA

GHSA-qf36-h9v8-48xq: Unspecified vulnerability in the web services framework in IBM WebSphere Commerce 6↗2022-05-13

▶

CVEList

CVE-2012-4855: Unspecified vulnerability in the web services framework in IBM WebSphere Commerce 6↗2013-03-05

▶