Information Disclosure Vulnerability in IBM WebSphere Commerce
CVE-2015-5015
Currently unrated
Summary
IBM WebSphere Commerce versions 7.0.0.9 and 8.x prior to Feature Pack 8 are susceptible to an information disclosure vulnerability. This flaw allows remote attackers to exploit a crafted REST URL, potentially leading to the exposure of sensitive information. Organizations using the affected versions should assess their risk and consider updating to the latest feature pack to mitigate the risk of unauthorized data access.
References
Timeline
Vulnerability published
Vulnerability Reserved