CVE-2011-5102

Published Aug 23, 2012

Last updated 12 years ago

CVSS info 7.5

Overview

Description: The Investigative Reports web interface in the TRITON management console in Websense Web Security 7.1 before Hotfix 109, 7.1.1 before Hotfix 06, 7.5 before Hotfix 78, 7.5.1 before Hotfix 12, 7.6 before Hotfix 24, and 7.6.2 before Hotfix 12; Web Filter; Web Security Gateway; and Web Security Gateway Anywhere allows remote attackers to execute commands via unspecified vectors.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-264

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:websense:websense_web_filter:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A8C57E4-31F8-4E16-B56A-9E119D418D1F"
          },
          {
            "criteria": "cpe:2.3:a:websense:websense_web_security:7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3E936379-C123-43B7-BFDC-BAEFADF2378F"
          },
          {
            "criteria": "cpe:2.3:a:websense:websense_web_security:7.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "161E18C4-3302-4420-8A1C-FB08B043D536"
          },
          {
            "criteria": "cpe:2.3:a:websense:websense_web_security:7.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "72741B37-B3E8-48B5-956E-FF455642531D"
          },
          {
            "criteria": "cpe:2.3:a:websense:websense_web_security:7.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "756CE82D-8583-441F-A9DB-6E0EAB6EDA3F"
          },
          {
            "criteria": "cpe:2.3:a:websense:websense_web_security:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B942647-F266-44A3-ABD5-89B4D3FB4DF7"
          },
          {
            "criteria": "cpe:2.3:a:websense:websense_web_security:7.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D90E8ED-5986-4DB3-ACE6-48A6C684B080"
          },
          {
            "criteria": "cpe:2.3:a:websense:websense_web_security_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73267B0B-22A6-492E-B89E-4AFD13A662CC"
          },
          {
            "criteria": "cpe:2.3:a:websense:websense_web_security_gateway_anywhere:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D56C1D61-4AE2-48FD-A7B4-F83153996A89"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References