Description
The Filtering Service in Websense Enterprise 5.2 through 6.3 does not consider the IP address during URL categorization, which makes it easier for remote attackers to bypass filtering via an HTTP request, as demonstrated by a request to a compromised server associated with a specific IP address.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/78299
Scores
EPSS
0.0119
EPSS Percentile
64.2%
Details
CWE
CWE-20
Status
published
Products (5)
websense/enterprise
5.2
websense/enterprise
5.5
websense/enterprise
6.1
websense/enterprise
6.2
websense/enterprise
6.3
Published
Aug 23, 2012
Tracked Since
Feb 18, 2026