The AdminUI in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) before 6.0 HF build 1244 allows remote authenticated users to read arbitrary files via vectors related to configuration input when saving filters.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:19
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.zerodayinitiative.com/advisories/ZDI-14-373/ - |
Information
Published : 2014-11-07 19:55
Updated : 2024-11-21 02:19
NVD link : CVE-2014-8510
Mitre link : CVE-2014-8510
CVE.ORG link : CVE-2014-8510
JSON object : View
Products Affected
trendmicro
- interscan_web_security_virtual_appliance
CWE
CWE-20
Improper Input Validation