cnvd - cnvd-2017-04452

cnvd-2017-04452

Vulnerability from cnvd

Title: Trend Micro InterScan Web安全虚拟设备特权提升漏洞

Description:

Trend Micro InterScan Web Security Virtual Appliance（IWSVA）是美国趋势科技（Trend Micro）公司的一款针对基于Web方式的威胁为企业网络提供动态的、集成式的安全保护的Web安全网关。

Trend Micro InterScan Web安全虚拟设备存在特权提升漏洞。攻击者可以利用此问题获得提升的权限。

Severity: 中

Patch Name: Trend Micro InterScan Web安全虚拟设备特权提升漏洞的补丁

Patch Description:

Trend Micro InterScan Web安全虚拟设备存在特权提升漏洞。攻击者可以利用此问题获得提升的权限。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

用户可联系供应商获得补丁信息： http://www.trendmicro.com/

Reference: http://www.securityfocus.com/bid/97482

Impacted products

Name
Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5<CP 1746

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-6338"
    }
  },
  "description": "Trend Micro InterScan Web Security Virtual Appliance\uff08IWSVA\uff09\u662f\u7f8e\u56fd\u8d8b\u52bf\u79d1\u6280\uff08Trend Micro\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u9488\u5bf9\u57fa\u4e8eWeb\u65b9\u5f0f\u7684\u5a01\u80c1\u4e3a\u4f01\u4e1a\u7f51\u7edc\u63d0\u4f9b\u52a8\u6001\u7684\u3001\u96c6\u6210\u5f0f\u7684\u5b89\u5168\u4fdd\u62a4\u7684Web\u5b89\u5168\u7f51\u5173\u3002 \r\n\r\nTrend Micro InterScan Web\u5b89\u5168\u865a\u62df\u8bbe\u5907\u5b58\u5728\u7279\u6743\u63d0\u5347\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u6b64\u95ee\u9898\u83b7\u5f97\u63d0\u5347\u7684\u6743\u9650\u3002",
  "discovererName": "Kapil Khot of Qualys.",
  "formalWay": "\u7528\u6237\u53ef\u8054\u7cfb\u4f9b\u5e94\u5546\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttp://www.trendmicro.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-04452",
  "openTime": "2017-04-14",
  "patchDescription": "Trend Micro InterScan Web Security Virtual Appliance\uff08IWSVA\uff09\u662f\u7f8e\u56fd\u8d8b\u52bf\u79d1\u6280\uff08Trend Micro\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u9488\u5bf9\u57fa\u4e8eWeb\u65b9\u5f0f\u7684\u5a01\u80c1\u4e3a\u4f01\u4e1a\u7f51\u7edc\u63d0\u4f9b\u52a8\u6001\u7684\u3001\u96c6\u6210\u5f0f\u7684\u5b89\u5168\u4fdd\u62a4\u7684Web\u5b89\u5168\u7f51\u5173\u3002 \r\n\r\nTrend Micro InterScan Web\u5b89\u5168\u865a\u62df\u8bbe\u5907\u5b58\u5728\u7279\u6743\u63d0\u5347\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u6b64\u95ee\u9898\u83b7\u5f97\u63d0\u5347\u7684\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Trend Micro InterScan Web\u5b89\u5168\u865a\u62df\u8bbe\u5907\u7279\u6743\u63d0\u5347\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5\u003cCP 1746"
  },
  "referenceLink": "http://www.securityfocus.com/bid/97482",
  "serverity": "\u4e2d",
  "submitTime": "2017-04-07",
  "title": "Trend Micro InterScan Web\u5b89\u5168\u865a\u62df\u8bbe\u5907\u7279\u6743\u63d0\u5347\u6f0f\u6d1e"
}

CVE-2017-6338 (GCVE-0-2017-6338)

Vulnerability from cvelistv5

Published

2017-04-05 16:00

Modified

2024-08-05 15:25

Severity ?

CWE

Summary

Multiple Access Control issues in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 allow an authenticated, remote user with low privileges like 'Reports Only' or 'Auditor' to change FTP Access Control Settings, create or modify reports, or upload an HTTPS Decryption Certificate and Private Key.

References

▼	URL	Tags
	https://success.trendmicro.com/solution/1116960	x_refsource_MISC
	http://www.securityfocus.com/bid/97482	vdb-entry, x_refsource_BID
	https://www.qualys.com/2017/01/12/qsa-2017-01-12/qsa-2017-01-12.pdf	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T15:25:49.164Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://success.trendmicro.com/solution/1116960"
          },
          {
            "name": "97482",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/97482"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.qualys.com/2017/01/12/qsa-2017-01-12/qsa-2017-01-12.pdf"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2017-04-05T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple Access Control issues in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 allow an authenticated, remote user with low privileges like \u0027Reports Only\u0027 or \u0027Auditor\u0027 to change FTP Access Control Settings, create or modify reports, or upload an HTTPS Decryption Certificate and Private Key."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-04-07T09:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://success.trendmicro.com/solution/1116960"
        },
        {
          "name": "97482",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/97482"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.qualys.com/2017/01/12/qsa-2017-01-12/qsa-2017-01-12.pdf"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2017-6338",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple Access Control issues in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 allow an authenticated, remote user with low privileges like \u0027Reports Only\u0027 or \u0027Auditor\u0027 to change FTP Access Control Settings, create or modify reports, or upload an HTTPS Decryption Certificate and Private Key."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://success.trendmicro.com/solution/1116960",
              "refsource": "MISC",
              "url": "https://success.trendmicro.com/solution/1116960"
            },
            {
              "name": "97482",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/97482"
            },
            {
              "name": "https://www.qualys.com/2017/01/12/qsa-2017-01-12/qsa-2017-01-12.pdf",
              "refsource": "MISC",
              "url": "https://www.qualys.com/2017/01/12/qsa-2017-01-12/qsa-2017-01-12.pdf"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2017-6338",
    "datePublished": "2017-04-05T16:00:00",
    "dateReserved": "2017-02-26T00:00:00",
    "dateUpdated": "2024-08-05T15:25:49.164Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted