Low severity3.1NVD Advisory· Published Aug 27, 2018· Updated Jun 17, 2026
CVE-2018-1644
CVE-2018-1644
Description
IBM WebSphere Commerce Enterprise, Professional, Express, and Developer 9.0.0.0 - 9.0.0.4, 8.0.0.0 - 8.0.0.19, 8.0.1.0 - 8.0.1.13, 8.0.3.0 - 8.0.3.6, 8.0.4.0 - 8.0.4.14, and 7.0.0.0 Feature Pack 8 could allow an authenticated user to obtain sensitive information about another user.
Affected products
27.0.0.0 Feature Pack 8 - 9.0.0.4+ 1 more
- (no CPE)range: 7.0.0.0 Feature Pack 8 - 9.0.0.4
- (no CPE)range: 7.0.0.0
Patches
Vulnerability mechanics
References
2- www.ibm.com/support/docview.wssnvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/144589nvdVDB EntryVendor Advisory
News mentions
0No linked articles in our index yet.