Lucene search
K

6 matches found

NVD
NVD
added 2024/06/10 10:15 p.m.30 views

CVE-2024-36359

A cross-site scripting XSS vulnerability in Trend Micro InterScan Web Security Virtual Appliance IWSVA 6.5 could allow an attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order ...

5.4CVSS0.00375EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/10 9:21 p.m.15 views

CVE-2024-36359

A cross-site scripting XSS vulnerability in Trend Micro InterScan Web Security Virtual Appliance IWSVA 6.5 could allow an attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order ...

5.4CVSS6.1AI score0.00375EPSS
Exploits0References2
CVE
CVE
added 2024/06/10 9:21 p.m.70 views

CVE-2024-36359

Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 is affected by a cross‑site scripting (XSS) vulnerability in the HTTP Inspection module that can enable privilege escalation when an attacker can run low‑privileged code on the target and entice user interaction. Details across sour...

5.4CVSS6.1AI score0.00375EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/04/07 12:0 a.m.75 views

Trend Micro IWSVA 6.5 < 6.5 Build 1746 Multiple Vulnerabilities

The version of Trend Micro InterScan Web Security Virtual Appliance IWSVA installed on the remote host is 6.5 prior to 6.5 Build 1746. It is, therefore, affected by multiple vulnerabilities : - Multiple access control issues exist that allow an authenticated, remote attacker with low privileges t...

6.5CVSS6.3AI score0.04071EPSS
Exploits7References45
NVD
NVD
added 2017/02/21 7:59 a.m.14 views

CVE-2016-9269

Remote Command Execution in com.trend.iwss.gui.servlet.ManagePatches in Trend Micro Interscan Web Security Virtual Appliance IWSVA version 6.5-SP2BuildLinux1707 and earlier allows authenticated, remote users with least privileges to run arbitrary commands on the system as root via Patch Update...

9.9CVSS9.7AI score0.13419EPSS
Exploits3References3
Cvelist
Cvelist
added 2017/02/21 7:46 a.m.17 views

CVE-2016-9269

Remote Command Execution in com.trend.iwss.gui.servlet.ManagePatches in Trend Micro Interscan Web Security Virtual Appliance IWSVA version 6.5-SP2BuildLinux1707 and earlier allows authenticated, remote users with least privileges to run arbitrary commands on the system as root via Patch Update...

9.8AI score0.13419EPSS
Exploits3References3
Rows per page
Query Builder