Unrated severityNVD Advisory· Published May 20, 2015· Updated Jun 17, 2026
CVE-2014-6211
CVE-2014-6211
Description
The command-line scripts in IBM WebSphere Commerce 6.0 through 6.0.0.11, 7.0 through 7.0.0.9, and 7.0 Feature Pack 2 through 8, when debugging is configured, do not properly restrict the logging of personal data, which allows local users to obtain sensitive information by reading a log file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
23cpe:2.3:a:ibm:websphere_commerce:6.0.0.0:*:*:*:*:*:*:*+ 22 more
- cpe:2.3:a:ibm:websphere_commerce:6.0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:6.0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:6.0.0.10:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:6.0.0.11:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:6.0.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:6.0.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:6.0.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:6.0.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:6.0.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:6.0.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:6.0.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:6.0.0.9:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.9:*:*:*:*:*:*:*
- (no CPE)range: >=6.0, <=6.0.0.11 and >=7.0, <=7.0.0.9 and 7.0 Feature Pack 2 through 8
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.