10 results (0.014 seconds)

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

TRITON AP-EMAIL 8.2 before 8.2 IB does not properly restrict file access in an unspecified directory. TRITON AP-EMAIL 8.2 anterior a la versión 8.2 IB no restringe correctamente el acceso a archivos en un directorio sin especificar. • https://support.forcepoint.com/KBArticle?id=000014490 • CWE-20: Improper Input Validation •

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

The Email Security Gateway in Websense TRITON AP-EMAIL before 8.0.0 allows remote attackers to conduct clickjacking attacks via unspecified vectors. Email Security Gateway en Websense TRITON AP-EMAIL anterior a 8.0.0 permite a atacantes remotos realizar ataques de clickjacking a través de vectores no especificados. • http://www.securityfocus.com/bid/73427 http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 • CWE-20: Improper Input Validation •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

Unspecified vulnerability in Websense TRITON AP-EMAIL before 8.0.0 has unknown impact and attack vectors, related to port 17703. Vulnerabilidad no especificada en Websense TRITON AP-EMAIL anterior a 8.0.0 tiene un impacto y vectores de ataque desconocidos, relacionado con el puerto 17703. • http://www.securityfocus.com/bid/73415 http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 •

CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0

The Mail Server in Websense TRITON AP-EMAIL and V-Series appliances before 8.0.0 uses plaintext credentials, which allows remote attackers to obtain sensitive information via unspecified vectors. Mail Server en Websense TRITON AP-EMAIL y dispositivos de la serie V anterior a 8.0.0 utiliza credenciales de texto plano, lo que permite a atacantes remotos obtener información sensible a través de vectores no especificados. • http://www.securityfocus.com/bid/73428 http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0

Multiple cross-site request forgery (CSRF) vulnerabilities in the Personal Email Manager (PEM) in Websense TRITON AP-EMAIL before 8.0.0 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors. Múltiples vulnerabilidades de CSRF en Personal Email Manager (PEM) en Websense TRITON AP-EMAIL anterior a 8.0.0 permiten a atacantes remotos secuestrar la autenticación de victimas no especificadas a través de vectores desconocidos. • http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 • CWE-352: Cross-Site Request Forgery (CSRF) •