Lucene search
+L

431 matches found

BDU FSTEC
BDU FSTEC
added 2024/07/23 12:0 a.m.6 views

The vulnerability of the HTTP traffic filtering module in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) allows attackers to enhance their privileges and execute cross-site scripting attacks.

The vulnerability of the HTTP traffic filtering module in Trend Micro InterScan Web Security Virtual Appliance IWSVA is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability can allow a malicious actor to enhance their privileges and carry out...

5.5CVSS5.8AI score0.00375EPSS
Exploits0References5
CNVD
CNVD
added 2024/06/12 12:0 a.m.9 views

Trend Micro InterScan Web Security Virtual Appliance Cross-Site Scripting Vulnerability (CNVD-2024-40821)

Trend Micro InterScan Web Security Virtual Appliance IWSVA is a Web security gateway from Trend Micro that provides dynamic, integrated security protection for enterprise networks against Web-based threats. A cross-site scripting vulnerability exists in the Trend Micro InterScan Web Security...

5.4CVSS6.3AI score0.00375EPSS
Exploits0References1
OSV
OSV
added 2024/06/10 10:15 p.m.11 views

CVE-2024-36359

A cross-site scripting XSS vulnerability in Trend Micro InterScan Web Security Virtual Appliance IWSVA 6.5 could allow an attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order ...

5.4CVSS5.8AI score0.00375EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/10 12:0 a.m.4 views

Trend Micro Micro InterScan Web Security Virtual Appliance 安全漏洞

Trend Micro InterScan Web Security Virtual Appliance IWSVA is a Web security gateway from Trend Micro that provides dynamic, integrated security protection for enterprise networks against Web-based threats. A cross-site scripting vulnerability exists in the Trend Micro InterScan Web Security...

5.4CVSS6.3AI score0.00375EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/09/05 12:0 a.m.8 views

PT-2023-9240 · Trend Micro · Trend Micro Interscan Web Security Virtual Appliance

Name of the Vulnerable Software and Affected Versions: Trend Micro InterScan Web Security Virtual Appliance version 6.5 Description: A cross-site scripting XSS issue in the HTTP Inspection module of Trend Micro InterScan Web Security Virtual Appliance is related to the lack of protection for the...

5.5CVSS6.5AI score0.00375EPSS
Exploits0References11
NVD
NVD
added 2021/06/17 12:15 p.m.22 views

CVE-2021-31521

Trend Micro InterScan Web Security Virtual Appliance version 6.5 was found to have a reflected cross-site scripting XSS vulnerability in the product's Captive Portal...

5.4CVSS0.01398EPSS
Exploits0References1
OSV
OSV
added 2021/06/17 12:15 p.m.5 views

CVE-2021-31521

Trend Micro InterScan Web Security Virtual Appliance version 6.5 was found to have a reflected cross-site scripting XSS vulnerability in the product's Captive Portal...

5.4CVSS5.7AI score0.01398EPSS
Exploits0References1
Prion
Prion
added 2021/06/17 12:15 p.m.19 views

Cross site scripting

Trend Micro InterScan Web Security Virtual Appliance version 6.5 was found to have a reflected cross-site scripting XSS vulnerability in the product's Captive Portal...

3.5CVSS5.3AI score0.01398EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/06/17 11:42 a.m.22 views

CVE-2021-31521

Trend Micro InterScan Web Security Virtual Appliance version 6.5 was found to have a reflected cross-site scripting XSS vulnerability in the product's Captive Portal...

5.5AI score0.01398EPSS
Exploits0References1
CVE
CVE
added 2021/06/17 11:42 a.m.40 views

CVE-2021-31521

The CVE-2021-31521 issue affects Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5, specifically the Captive Portal, where user-supplied data in the portal can trigger a reflected XSS. Public records timestamped across multiple feeds describe the root cause as inadequate sanitizati...

5.4CVSS5.3AI score0.01398EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/06/15 12:0 a.m.4 views

Trend Micro InterScan Web Security Virtual Appliance 跨站脚本漏洞

Trend Micro InterScan Web Security Virtual Appliance IWSVA is a Web security gateway from Trend Micro that provides dynamic, integrated security protection for enterprise networks against Web-based threats. A cross-site scripting vulnerability exists in Trend Micro InterScan Web Security Virtual...

5.4CVSS5.3AI score0.01398EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/04/01 12:0 a.m.6 views

The vulnerability of Trend Micro InterScan Web Security Virtual Appliance lies in the recording beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Trend Micro InterScan Web Security Virtual Appliance is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS8.4AI score0.7227EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2021/01/26 12:0 a.m.7 views

The vulnerability of Trend Micro InterScan Web Security Virtual Appliance lies in the lack of protection for operational data, which allows attackers to exploit this weakness to disclose protected information.

The vulnerability of Trend Micro InterScan Web Security Virtual Appliance is related to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...

7.8CVSS7.3AI score0.89661EPSS
Exploits7References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/01/26 12:0 a.m.6 views

The vulnerability of Trend Micro InterScan Web Security Virtual Appliance, related to deficiencies in authentication procedures, allows attackers to bypass the authentication process.

The vulnerability of Trend Micro InterScan Web Security Virtual Appliance is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass the authentication process remotely...

10CVSS7.7AI score0.7274EPSS
Exploits7References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/01/26 12:0 a.m.7 views

The vulnerability in the Trend Micro InterScan Web Security Virtual Appliance exists due to the failure to take measures to eliminate certain special elements used in the operating system. This allows attackers to execute arbitrary code.

The vulnerability of Trend Micro InterScan Web Security Virtual Appliance exists due to the lack of measures taken to neutralize special elements used in the operating system’s command chain. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9CVSS8.1AI score0.8758EPSS
Exploits7References6Affected Software1
CNVD
CNVD
added 2020/12/18 12:0 a.m.4 views

Trend Micro InterScan Web Security Virtual Appliance Cross-Site Scripting Vulnerability (CNVD-2020-73778)

Trend Micro InterScan Web Security Virtual Appliance IWSVA is a Web security gateway from Trend Micro that provides dynamic, integrated security protection for enterprise networks against Web-based threats. A cross-site scripting vulnerability exists in Trend Micro InterScan Web Security Virtual...

4.8CVSS6.1AI score0.00713EPSS
Exploits0References1
CNVD
CNVD
added 2020/12/18 12:0 a.m.3 views

Trend Micro InterScan Web Security Virtual Appliance Command Injection Vulnerability (CNVD-2020-73777)

Trend Micro InterScan Web Security Virtual Appliance IWSVA is a Web security gateway from Trend Micro that provides dynamic, integrated security protection for enterprise networks against Web-based threats. A command injection vulnerability exists in Trend Micro InterScan Web Security Virtual...

9.8CVSS7.9AI score0.63711EPSS
Exploits2References1
CNVD
CNVD
added 2020/12/18 12:0 a.m.3 views

Trend Micro InterScan Web Security Virtual Appliance Command Execution Vulnerability (CNVD-2020-73776)

Trend Micro InterScan Web Security Virtual Appliance IWSVA is a Web security gateway from Trend Micro that provides dynamic, integrated security protection for enterprise networks against Web-based threats. A command execution vulnerability exists in Trend Micro InterScan Web Security Virtual...

10CVSS7.5AI score0.02574EPSS
Exploits2References1
CNVD
CNVD
added 2020/12/18 12:0 a.m.4 views

Trend Micro InterScan Web Security Virtual Appliance Authorization Bypass Vulnerability

Trend Micro InterScan Web Security Virtual Appliance IWSVA is a Web security gateway from Trend Micro that provides dynamic, integrated security protection for enterprise networks against Web-based threats. An authorization bypass vulnerability exists in Trend Micro InterScan Web Security Virtual...

7.5CVSS6.9AI score0.05908EPSS
Exploits2References1
CNVD
CNVD
added 2020/12/18 12:0 a.m.4 views

Trend Micro InterScan Web Security Virtual Appliance CSRF Protection Bypass Vulnerability

Trend Micro InterScan Web Security Virtual Appliance IWSVA is a Web security gateway from Trend Micro that provides dynamic, integrated security protection for enterprise networks against Web-based threats. A security vulnerability exists in Trend Micro InterScan Web Security Virtual Appliance 6....

8.8CVSS6.8AI score0.01136EPSS
Exploits2References1
Rows per page
Query Builder