Websense : Security Vulnerabilities, CVEs, Published In 2012 (Bypass)
The TRITON management console in Websense Web Security before 7.6 Hotfix 24 allows remote attackers to bypass authentication and read arbitrary reports via a crafted uid field, in conjunction with a crafted userRoles field, in a cookie, as demonstrated by a request to explorer_wse/favorites.exe.
Max CVSS
4.3
EPSS Score
0.24%
Published
2012-08-23
Updated
2012-08-23
1 vulnerabilities found