Lucene search

[email protected]CVE-2009-2094

HistoryAug 13, 2009 - 6:30 p.m.

CVE-2009-2094

2009-08-1318:30:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

ibm

websphere commerce

vulnerability

cve-2009-2094

nvd

security

information disclosure

6.2 Medium

AI Score

Confidence

Low

1.5 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:S/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.2%

JSON

Unspecified vulnerability in IBM WebSphere Commerce 6.0 Enterprise before 6.0.0.8, when trace is enabled, allows local users to obtain sensitive information via unknown vectors.

CPENameOperatorVersion
ibm:websphere_commerceibm websphere commerceeq6.0.0.4
ibm:websphere_commerceibm websphere commerceeq6.0.0.3
ibm:websphere_commerceibm websphere commerceeq6.0.0.5
ibm:websphere_commerceibm websphere commerceeq6.0.0.6
ibm:websphere_commerceibm websphere commerceeq6.0.0.2
ibm:websphere_commerceibm websphere commerceeq6.0.0.1

CPE	Name	Operator	Version
ibm:websphere_commerce	ibm websphere commerce	eq	6.0.0.4
ibm:websphere_commerce	ibm websphere commerce	eq	6.0.0.3
ibm:websphere_commerce	ibm websphere commerce	eq	6.0.0.5
ibm:websphere_commerce	ibm websphere commerce	eq	6.0.0.6
ibm:websphere_commerce	ibm websphere commerce	eq	6.0.0.2
ibm:websphere_commerce	ibm websphere commerce	eq	6.0.0.1

References

publib.boulder.ibm.com/infocenter/wchelp/v6r0m0/topic/com.ibm.commerce.admin.doc/refs/rig_new_and_changed.htm

www-1.ibm.com/support/docview.wss?uid=swg1LI74286

exchange.xforce.ibmcloud.com/vulnerabilities/52398

6.2 Medium

AI Score

Confidence

Low

1.5 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:S/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2009-2094

cvelist1 prion1