Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The default configuration of Apache Tomcat in Websense Manager in Websense Web Security 7.0 and Web Filter 7.0 enables weak SSL ciphers in conf/server.xml, which makes it easier for remote attackers to obtain sensitive information by sniffing the network and then conducting a brute-force attack against encrypted session data.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Websense Web Security/Web Filter 配置错误漏洞
Vulnerability Description
Websense是业界领先的Web安全和网页过滤解决方案。 Websense Web Security 7.0版本和Web Filter 7.0版本中的Apache Tomcat中的默认配置中存在漏洞,该漏洞源于在conf/server.xml中可能存在弱SSL加密。更易于远程攻击者利用该漏洞借助嗅探网络获取敏感信息,并对加密的会话数据进行暴力破解攻击。
CVSS Information
N/A
Vulnerability Type
N/A