AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2014-0347: The Settings module in Websense Triton Unified Security Center 7.7.3 before Hotfix 31, Web Filter 7.7.3 before Hotfix 31

infovulnerability

security

Source: NVD/CVE DatabaseApril 12, 2014CVE-2014-0347

Summary

A vulnerability in Websense security products (versions 7.7.3 and earlier) allows authenticated users to view saved passwords in plaintext by modifying web page code that normally hides passwords as dots. An attacker with login access could change a password field's HTML element from type="password" to type="text" to expose stored credentials in the Log Database or User Directories components.

Solution / Mitigation

Apply Hotfix 31 to Websense Triton Unified Security Center, Web Filter, Web Security, Web Security Gateway, or Web Security Gateway Anywhere version 7.7.3.

Vulnerability Details

CVSS Score

3.5

EPSS (30-day exploit probability)

EPSS: 0.2%

Classification

Attack SophisticationTrivial

Taxonomy References

CWE (Weakness Type)

CWE-255

Original source: https://nvd.nist.gov/vuln/detail/CVE-2014-0347

First tracked: February 15, 2026 at 08:45 PM

Classified by LLM (prompt v3) · confidence: 95%