Описание
The default configuration of Apache Tomcat in Websense Manager in Websense Web Security 7.0 and Web Filter 7.0 enables weak SSL ciphers in conf/server.xml, which makes it easier for remote attackers to obtain sensitive information by sniffing the network and then conducting a brute-force attack against encrypted session data.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:websense:websense_web_filter:7.0:*:*:*:*:*:*:*
cpe:2.3:a:websense:websense_web_security:7.0:*:*:*:*:*:*:*
EPSS
Процентиль: 46%
0.0023
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-16
Связанные уязвимости
github
почти 4 года назад
The default configuration of Apache Tomcat in Websense Manager in Websense Web Security 7.0 and Web Filter 7.0 enables weak SSL ciphers in conf/server.xml, which makes it easier for remote attackers to obtain sensitive information by sniffing the network and then conducting a brute-force attack against encrypted session data.
EPSS
Процентиль: 46%
0.0023
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-16