Back to search
CVE-2014-6211
Published: May 20, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
The command-line scripts in IBM WebSphere Commerce 6.0 through 6.0.0.11, 7.0 through 7.0.0.9, and 7.0 Feature Pack 2 through 8, when debugging is configured, do not properly restrict the logging of personal data, which allows local users to obtain sensitive information by reading a log file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1032248
vdb-entry
x_refsource_SECTRACK
JR52983
vendor-advisory
x_refsource_AIXAPAR
JR52117
vendor-advisory
x_refsource_AIXAPAR
http://www-01.ibm.com/support/docview.wss?uid=swg21883875
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now