Websense : Security Vulnerabilities, CVEs, Published In 2015 (Information Leak)

CVE-2015-2771

The Mail Server in Websense TRITON AP-EMAIL and V-Series appliances before 8.0.0 uses plaintext credentials, which allows remote attackers to obtain sensitive information via unspecified vectors.
Max CVSS
5.0
EPSS Score
0.30%
Published
2015-03-27
Updated
2016-12-03

CVE-2015-2762

Websense TRITON AP-WEB before 8.0.0 allows remote attackers to enumerate Windows domain user accounts via vectors related to HTTP authentication.
Max CVSS
5.0
EPSS Score
0.30%
Published
2015-03-27
Updated
2016-12-03

CVE-2015-2748

Websense TRITON AP-WEB before 8.0.0 does not properly restrict access to files in explorer_wse/, which allows remote attackers to obtain sensitive information via a direct request to a (1) Web Security incident report or the (2) Explorer configuration (websense.ini) file.
Max CVSS
5.0
EPSS Score
0.58%
Published
2015-03-26
Updated
2018-10-09

CVE-2014-9712

Websense TRITON V-Series appliances before 7.8.3 Hotfix 03 and 7.8.4 before Hotfix 01 allow remote administrators to read arbitrary files and obtain passwords via a crafted path.
Max CVSS
4.0
EPSS Score
0.09%
Published
2015-03-27
Updated
2016-06-23
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close