Sensitive Data Exposure in IBM WebSphere Commerce by IBM
CVE-2015-4980

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Commerce
Vendor: CVE Published:; 14 September 2015

What is CVE-2015-4980?

An unspecified vulnerability in IBM WebSphere Commerce versions 7.0.0.6 through 7.0.0.9 permits remote authenticated users to access sensitive personal information through various unknown vectors. This exposure can compromise user privacy and lead to unauthorized access to confidential data.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21965013

x_refsource_CONFIRM

http://www-01.ibm.com/support/docview.wss?uid=swg1JR54107

vendor-advisoryx_refsource_AIXAPAR

http://www.securitytracker.com/id/1033447

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 14, 2015
Vulnerability Reserved
Jun 24, 2015