Medium severity5.1NVD Advisory· Published Mar 8, 2017· Updated Jun 17, 2026
CVE-2016-5894
CVE-2016-5894
Description
IBM WebSphere Commerce Enterprise, Professional, Express, and Developer 7.0 and 8.0 is vulnerable to information disclosure vulnerability. A local user could view a plain text password in a Unix console. IBM Reference #: 1997408.
Affected products
44cpe:2.3:a:ibm:websphere_commerce:7.0:*:*:*:*:*:*:*+ 42 more
- cpe:2.3:a:ibm:websphere_commerce:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:7.0.0.9:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.10:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.11:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.12:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.13:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.14:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.15:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.16:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.17:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.18:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.19:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.0.9:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.1.11:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.1.12:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_commerce:8.0.1.9:*:*:*:*:*:*:*
- (no CPE)range: 7.0 and 8.0
- IBM Corporation/WebSphere Commerce Enterprisev5Range: 7.0
Patches
Vulnerability mechanics
References
3- www.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www.securityfocus.com/bid/96624nvd
- www.securitytracker.com/id/1037962nvd
News mentions
0No linked articles in our index yet.