CVE-2009-5122

The Personal Email Manager component in Websense Email Security before 7.2 allows remote attackers to obtain potentially sensitive information from the JBoss status page via an unspecified query.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 45%
VendorProductVersion
websensewebsense_email_security
𝑥
≤ 7.1
websensewebsense_email_security
6.1
websensewebsense_email_security
6.1:sp1
websensewebsense_email_security
7.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.websense.com/content/support/library/email/v72wes/release_notes/WES72_ReleaseNotes.pdf
https://exchange.xforce.ibmcloud.com/vulnerabilities/78449
http://www.websense.com/content/support/library/email/v72wes/release_notes/WES72_ReleaseNotes.pdf
https://exchange.xforce.ibmcloud.com/vulnerabilities/78449