Trustwave WebDefend Enterprise before 5.0 7.01.903-1.4 stores specific user-account credentials in a MySQL database, which makes it easier for remote attackers to read the event collection table via requests to the management port, a different vulnerability than CVE-2011-0756.
Max CVSS
5.0
EPSS Score
0.33%
Published
2011-05-05
Updated
2011-05-31
The application server in Trustwave WebDefend Enterprise before 5.0 uses hardcoded console credentials, which makes it easier for remote attackers to read security-event data by using the remote console GUI to connect to the management port.
Max CVSS
5.0
EPSS Score
0.33%
Published
2011-05-05
Updated
2011-05-31
2 vulnerabilities found