| Max CVSS | 4.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-6339 | 4.0 |
Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 mismanages certain key and certificate data. Per IWSVA documentation, by default, IWSVA acts as a private Certificate Authority (CA) and dynamically generates digital cer
|
03-10-2019 - 00:03 | 05-04-2017 - 16:59 | |
| CVE-2017-6338 | 4.0 |
Multiple Access Control issues in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 allow an authenticated, remote user with low privileges like 'Reports Only' or 'Auditor' to change FTP Access Control Settings, create o
|
03-10-2019 - 00:03 | 05-04-2017 - 16:59 | |
| CVE-2017-6340 | 3.5 |
Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 does not sanitize a rest/commonlog/report/template name field, which allows a 'Reports Only' user to inject malicious JavaScript while creating a new report. Additionally
|
11-04-2017 - 19:23 | 05-04-2017 - 16:59 |