VYPR
Low severity3.1NVD Advisory· Published Aug 27, 2018· Updated Jun 17, 2026

CVE-2018-1644

CVE-2018-1644

Description

IBM WebSphere Commerce Enterprise, Professional, Express, and Developer 9.0.0.0 - 9.0.0.4, 8.0.0.0 - 8.0.0.19, 8.0.1.0 - 8.0.1.13, 8.0.3.0 - 8.0.3.6, 8.0.4.0 - 8.0.4.14, and 7.0.0.0 Feature Pack 8 could allow an authenticated user to obtain sensitive information about another user.

Affected products

2
  • IBM/Websphere Commercellm-fuzzy2 versions
    7.0.0.0 Feature Pack 8 - 9.0.0.4+ 1 more
    • (no CPE)range: 7.0.0.0 Feature Pack 8 - 9.0.0.4
    • (no CPE)range: 7.0.0.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.