Unrated severityNVD Advisory· Published Apr 12, 2014· Updated May 6, 2026

CVE-2014-0347

Description

The Settings module in Websense Triton Unified Security Center 7.7.3 before Hotfix 31, Web Filter 7.7.3 before Hotfix 31, Web Security 7.7.3 before Hotfix 31, Web Security Gateway 7.7.3 before Hotfix 31, and Web Security Gateway Anywhere 7.7.3 before Hotfix 31 allows remote authenticated users to read cleartext passwords by replacing type="password" with type="text" in an INPUT element in the (1) Log Database or (2) User Directories component.

Affected products

Websense/Triton Unified Security Center
cpe:2.3:a:websense:triton_unified_security_center:7.7.3:*:*:*:*:*:*:*
Websense/Triton Web Filter
cpe:2.3:a:websense:triton_web_filter:7.7.3:*:*:*:*:*:*:*
Websense/Triton Web Security
cpe:2.3:a:websense:triton_web_security:7.7.3:*:*:*:*:*:*:*
Websense/Triton Web Security Gateway
cpe:2.3:a:websense:triton_web_security_gateway:7.7.3:*:*:*:*:*:*:*
Websense/Triton Web Security Gateway Anywhere
cpe:2.3:a:websense:triton_web_security_gateway_anywhere:7.7.3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.kb.cert.org/vuls/id/568252nvdUS Government Resource
www.websense.com/content/mywebsense-hotfixes.aspxnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000