IBM WebSphere Commerce 6.x through 6.0.0.11 and 7.x through 7.0.0.7 does not properly perform authentication for unspecified web services, which allows remote attackers to issue requests in the context of an arbitrary user's active session via unknown vectors.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: ibm
Published:
Updated: 2024-08-06T15:52:21.687Z
Reserved: 2013-04-12T00:00:00
Link: CVE-2013-2993

No data.

Status : Modified
Published: 2013-08-01T13:32:16.400
Modified: 2024-11-21T01:52:48.197
Link: CVE-2013-2993

No data.