Denial of Service Vulnerability in IBM WebSphere Commerce Products
CVE-2017-1569

7.5HIGH

Key Information:

Vendor
IBM
Status
Websphere Commerce Enterprise
Vendor
CVE Published:
3 October 2017

Summary

An unspecified vulnerability within the Marketing ESpot component of IBM WebSphere Commerce versions 7.0 and 8.0 has been identified. Exploiting this vulnerability could allow attackers to cause a denial of service, potentially disrupting business operations. Organizations using affected versions should assess their systems and apply available patches to mitigate this risk.

Affected Version(s)

WebSphere Commerce Enterprise 7.0

WebSphere Commerce Enterprise 8.0

References

http://www.securityfocus.com/bid/101073
vdb-entryx_refsource_BID
http://www.ibm.com/support/docview.wss?uid=swg22008547
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/131779
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.