Unrated severityNVD Advisory· Published May 5, 2011· Updated Apr 29, 2026

CVE-2011-1906

Description

Trustwave WebDefend Enterprise before 5.0 7.01.903-1.4 stores specific user-account credentials in a MySQL database, which makes it easier for remote attackers to read the event collection table via requests to the management port, a different vulnerability than CVE-2011-0756.

Affected products

Trustwave/Webdefend3 versions
cpe:2.3:h:trustwave:webdefend:2.0:*:enterprise:*:*:*:*:*+ 2 more
- cpe:2.3:h:trustwave:webdefend:2.0:*:enterprise:*:*:*:*:*
- cpe:2.3:h:trustwave:webdefend:3.0:*:enterprise:*:*:*:*:*
- cpe:2.3:h:trustwave:webdefend:*:*:enterprise:*:*:*:*:*range: <=5.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.trustwave.com/spiderlabs/advisories/TWSL2011-001.txtnvdVendor Advisory
securitytracker.com/idnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000