CVE-2009-5122

EUVD-2009-5077
The Personal Email Manager component in Websense Email Security before 7.2 allows remote attackers to obtain potentially sensitive information from the JBoss status page via an unspecified query.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 45%
Affected Products (NVD)
VendorProductVersion
websensewebsense_email_security
𝑥
≤ 7.1
websensewebsense_email_security
6.1
websensewebsense_email_security
6.1:sp1
websensewebsense_email_security
7.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.websense.com/content/support/library/email/v72wes/release_notes/WES72_ReleaseNotes.pdf
https://exchange.xforce.ibmcloud.com/vulnerabilities/78449
http://www.websense.com/content/support/library/email/v72wes/release_notes/WES72_ReleaseNotes.pdf
https://exchange.xforce.ibmcloud.com/vulnerabilities/78449