NVD

Id
84733  
Name
CVE-2017-6338  
Description
Multiple Access Control issues in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 allow an authenticated, remote user with low privileges like 'Reports Only' or 'Auditor' to change FTP Access Control Settings, create or modify reports, or upload an HTTPS Decryption Certificate and Private Key.  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:N/I:P/A:N)  
Pub Date
2017-04-27  
Published
2017-04-05  
Modified Date
2017-04-11  
Seq
2017-6338  

Actions

Related NVD References

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
66604 JVNDB-2017-002929 Trend Micro InterScan Web Security Virtual Appliance におけるアクセス制御に関する脆弱性 Trend Micro InterScan Web Security Virtual Appliance (IWSVA) には、アクセス制御に関する脆弱性が存在します。 CVE-2017-6338 0 CVE-2017-6338 84733 4 6.5 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-002929.html 2017-03-28 2017-05-09 View