CVE-2015-2762: Websense TRITON AP-WEB before 8.0.0 allows remote attackers to enumerate Windows domain user accounts via vectors relate
infovulnerability
security
Summary
Websense TRITON AP-WEB versions before 8.0.0 contain a vulnerability that allows attackers to discover Windows domain user accounts through HTTP authentication methods (a process called enumeration, where attackers list valid usernames without needing passwords). This flaw exposes sensitive information to unauthorized users.
Solution / Mitigation
Update Websense TRITON AP-WEB to version 8.0.0 or later. According to the source, vulnerabilities were resolved in TRITON APX Version 8.0.
Vulnerability Details
CVSS Score
5
EPSS (30-day exploit probability)
EPSS: 0.2%
Classification
Attack SophisticationTrivial
Original source: https://nvd.nist.gov/vuln/detail/CVE-2015-2762
First tracked: February 15, 2026 at 08:45 PM
Classified by LLM (prompt v3) · confidence: 95%