CVE-2009-2094

Published Aug 13, 2009

Last updated 8 years ago

CVSS info 1.5

Overview

Description: Unspecified vulnerability in IBM WebSphere Commerce 6.0 Enterprise before 6.0.0.8, when trace is enabled, allows local users to obtain sensitive information via unknown vectors.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 1.5
Impact score: 2.9
Exploitability score: 2.7
Vector string: AV:L/AC:M/Au:S/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:websphere_commerce:6.0.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C21677D0-CF4E-4958-83A7-EF8C3AF4B1D1"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_commerce:6.0.0.1:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1FE46C0C-A5D0-4A0D-A936-67F5DB0799BD"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_commerce:6.0.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAF24659-1284-4762-925C-4879B56AC386"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_commerce:6.0.0.2:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9DB9943D-6E0E-4044-B758-73442EC791FB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_commerce:6.0.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "162FF755-CFF5-4AF2-B5D4-AEBA107DD93D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_commerce:6.0.0.3:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "268E0C2C-E334-45EB-A716-F9A51EF75B13"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_commerce:6.0.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4783F5D2-0709-4E5B-B6B7-DF7823E928CB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_commerce:6.0.0.4:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F496166-6606-4A90-AC87-E18EEEDBE0DC"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_commerce:6.0.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8EB6E277-36B8-483E-8F9E-34D350BBB0EE"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_commerce:6.0.0.5:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B4485290-DA10-4FE5-B7E2-F9CAFE801E9A"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_commerce:6.0.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40A7EA48-BCC0-41BD-975D-0C01B6066BE7"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_commerce:6.0.0.6:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E59F3DB-5005-4CB4-85C4-B8167260E801"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References