CVE-2015-4980

CWE-200Information Exposure3 documents3 sources
Severity
4.0MEDIUM
EPSS
0.2%
top 62.51%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Websphere Commerce
Timeline
PublishedSep 14
Latest updateMay 17

Description

Unspecified vulnerability in IBM WebSphere Commerce 7.0.0.6 through 7.0.0.9 allows remote authenticated users to obtain sensitive personal information via unknown vectors.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

NVDibm/websphere_commerce4 versions+3

Patches

Patch: www-01.ibm.comPatch: www-01.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-7cp2-c4f6-r8p9: Unspecified vulnerability in IBM WebSphere Commerce 72022-05-17
CVEList
CVE-2015-4980: Unspecified vulnerability in IBM WebSphere Commerce 72015-09-14
CVE-2015-4980 (MEDIUM CVSS 4) | Unspecified vulnerability in IBM We | cvebase.io