CVE-2009-5122
 
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The Personal Email Manager component in Websense Email Security before 7.2 allows remote attackers to obtain potentially sensitive information from the JBoss status page via an unspecified query.
El componente Personal Email Manager en Websense Email Security anterior a v7.2 permite a atacantes remotos obtener información sensible de la página de estado de JBoss a través de una consulta sin especificar.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-08-23 CVE Reserved
- 2012-08-23 CVE Published
- 2023-07-14 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (2)
URL | Tag | Source |
---|---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/78449 | Vdb Entry |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Websense Search vendor "Websense" | Websense Email Security Search vendor "Websense" for product "Websense Email Security" | <= 7.1 Search vendor "Websense" for product "Websense Email Security" and version " <= 7.1" | - |
Affected
| ||||||
Websense Search vendor "Websense" | Websense Email Security Search vendor "Websense" for product "Websense Email Security" | 6.1 Search vendor "Websense" for product "Websense Email Security" and version "6.1" | - |
Affected
| ||||||
Websense Search vendor "Websense" | Websense Email Security Search vendor "Websense" for product "Websense Email Security" | 6.1 Search vendor "Websense" for product "Websense Email Security" and version "6.1" | sp1 |
Affected
| ||||||
Websense Search vendor "Websense" | Websense Email Security Search vendor "Websense" for product "Websense Email Security" | 7.0 Search vendor "Websense" for product "Websense Email Security" and version "7.0" | - |
Affected
|