Interscan Messaging Security Virtual Appliance Security Vulnerabilities and Issues — Interscan Messaging Security Virtual Appliance CVE List

Lucene search

TrendmicroInterscan Messaging Security Virtual Appliance

4 matches found

CVE•added 2017/03/14 9:59 a.m.•37 views

CVE-2017-6398

An issue was discovered in Trend Micro InterScan Messaging Security (Virtual Appliance) 9.1-1600. An authenticated user can execute a terminal command in the context of the web server user (which is root). Besides, the default installation of IMSVA comes with default administrator credentials. The ...

9CVSS8.8AI score0.6462EPSS

CVE•added 2017/08/03 3:29 p.m.•35 views

CVE-2017-11391

Proxy command injection vulnerability in Trend Micro InterScan Messaging Virtual Appliance 9.0 and 9.1 allows remote attackers to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the "t" parameter within modTMCSS Proxy. Formerly ZDI-CAN-4744.

8.8CVSS9AI score0.12628EPSS

CVE•added 2017/08/03 3:29 p.m.•32 views

CVE-2017-11392

Proxy command injection vulnerability in Trend Micro InterScan Messaging Virtual Appliance 9.0 and 9.1 allows remote attackers to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the "T" parameter within modTMCSS Proxy. Formerly ZDI-CAN-4745.

8.8CVSS9AI score0.06769EPSS

CVE•added 2017/04/18 3:59 p.m.•31 views

CVE-2017-7896

Trend Micro InterScan Messaging Security Virtual Appliance (IMSVA) 9.1 before CP 1644 has XSS.

6.1CVSS6.2AI score0.00354EPSS