29 matches found
EUVD-2015-5665
Malware in sbrugna...
EUVD-2012-2962
Malware in sbrugna...
CVE-2022-1700
Improper Restriction of XML External Entity Reference 'XXE' vulnerability in the Policy Engine of Forcepoint Data Loss Prevention DLP, which is also leveraged by Forcepoint One Endpoint F1E, Web Security Content Gateway, Email Security with DLP enabled, and Cloud Security Gateway prior to June 20...
PT-2022-14056 · Forcepoint · Forcepoint Email Security +4
Name of the Vulnerable Software and Affected Versions: Forcepoint Data Loss Prevention DLP versions prior to 8.8.2 Forcepoint One Endpoint F1E with Policy Engine versions prior to 8.8.2 Forcepoint Web Security Content Gateway versions prior to 8.5.5 Forcepoint Email Security with DLP enabled...
CVE-2020-6590
Forcepoint Web Security Content Gateway versions prior to 8.5.4 improperly process XML input, leading to information disclosure...
CVE-2020-6590
Forcepoint Web Security Content Gateway versions prior to 8.5.4 improperly process XML input, leading to information disclosure...
Information disclosure
Forcepoint Web Security Content Gateway versions prior to 8.5.4 improperly process XML input, leading to information disclosure...
CVE-2020-6590
Forcepoint Web Security Content Gateway versions prior to 8.5.4 improperly process XML input, leading to information disclosure...
CVE-2020-6590
CVE-2020-6590 affects Forcepoint Web Security Content Gateway versions prior to 8.5.4, where improper processing of XML input leads to information disclosure. The issue is rooted in XML handling (XML input processing) and can be triggered remotely over the network with low attack complexity; no u...
Forcepoint Web Security Content Gateway 代码问题漏洞
Forcepoint Web Security Content Gateway is an application gateway from Forcepoint, USA. A code issue vulnerability exists in Forcepoint Web Security Content Gateway versions prior to 8.5.4 that stems from incorrectly processing XML input, which can lead to information disclosure...
Websense Content Gateway Stack Buffer Overflow Vulnerability
Websense Content Gateway is a set of content security solution gateway from Websense, Inc. A stack buffer overflow vulnerability exists in the 'handledebugnetwork' function in Manager for Websense Content Gateway version 8.0.0. A remote attacker can exploit this vulnerability to cause a denial of...
CVE-2015-5718
Stack-based buffer overflow in the handledebugnetwork function in the manager in Websense Content Gateway before 8.0.0 HF02 allows remote administrators to cause a denial of service crash via a crafted diagnostic command line request to submitnetdebug.cgi...
Stack overflow
Stack-based buffer overflow in the handledebugnetwork function in the manager in Websense Content Gateway before 8.0.0 HF02 allows remote administrators to cause a denial of service crash via a crafted diagnostic command line request to submitnetdebug.cgi...
CVE-2015-5718
CVE-2015-5718 affects Websense Content Gateway (Triton Content Manager) 8.0.0 build 1165 and prior. The vulnerability is a stack-based buffer overflow in handle_debug_network caused by unbounded strcpy writing past the 512-byte buffer dest when processing the submit_net_debug.cgi path. This can b...
CVE-2015-5718
Stack-based buffer overflow in the handledebugnetwork function in the manager in Websense Content Gateway before 8.0.0 HF02 allows remote administrators to cause a denial of service crash via a crafted diagnostic command line request to submitnetdebug.cgi...
Websense Content Gateway certificates check vulnereability
Compromised certificates are incorrectly checked...
Certificate trust vulnerability in Websense Content Gateway
SUMMARY Websense Content Gateway proxy explicitly trusts compromised certificate authorities Affected versions: Content Gateway 7.8.x Not affected: Content Gateway 7.7.x, 8.0 DESCRIPTION Websense Content Gateway is a filtering web proxy and content inspection application based on a modified...
CVE-2015-2703
Multiple cross-site scripting XSS vulnerabilities in Websense TRITON AP-WEB before 8.0.0 and V-Series 7.7 appliances allow remote attackers to inject arbitrary web script or HTML via the 1 ws-userip in the ws-encdata parameter to cve-bin/moreBlockInfo.cgi in the Data Security block page or 2...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Websense TRITON AP-WEB before 8.0.0 and V-Series 7.7 appliances allow remote attackers to inject arbitrary web script or HTML via the 1 ws-userip in the ws-encdata parameter to cve-bin/moreBlockInfo.cgi in the Data Security block page or 2...
CVE-2015-2703
Multiple cross-site scripting XSS vulnerabilities in Websense TRITON AP-WEB before 8.0.0 and V-Series 7.7 appliances allow remote attackers to inject arbitrary web script or HTML via the 1 ws-userip in the ws-encdata parameter to cve-bin/moreBlockInfo.cgi in the Data Security block page or 2...