CVE-2015-7444

Name of the Vulnerable Software and Affected Versions IBM WebSphere Commerce Enterprise versions 7.0.0.8 through 7.0.0.9

Description The issue concerns the Update Installer in IBM WebSphere Commerce Enterprise, which fails to properly replicate the search index. This allows attackers to obtain sensitive information via unspecified vectors.

Recommendations For versions 7.0.0.8 and 7.0.0.9, update to a version that properly replicates the search index to prevent sensitive information disclosure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.