← Retour aux CVEs
CVE-2017-6338
N/ADescription
Multiple Access Control issues in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 allow an authenticated, remote user with low privileges like 'Reports Only' or 'Auditor' to change FTP Access Control Settings, create or modify reports, or upload an HTTPS Decryption Certificate and Private Key.
Details CVE
Score CVSS v3.1N/A
Publie4/5/2017
Derniere modification4/20/2025
Sourcenvd
Observations honeypot0
Produits affectes
trendmicro:interscan_web_security_virtual_appliance
Faiblesses (CWE)
CWE-732
References
http://www.securityfocus.com/bid/97482(cve@mitre.org)
https://success.trendmicro.com/solution/1116960(cve@mitre.org)
http://www.securityfocus.com/bid/97482(af854a3a-2127-422b-91ae-364da2661108)
https://success.trendmicro.com/solution/1116960(af854a3a-2127-422b-91ae-364da2661108)
https://www.qualys.com/2017/01/12/qsa-2017-01-12/qsa-2017-01-12.pdf(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.