CVE-2014-8510
Trend Micro InterScan Web Security Virtual Appliance Arbitrary File Read via AdminUI
Title source: llmDescription
The AdminUI in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) before 6.0 HF build 1244 allows remote authenticated users to read arbitrary files via vectors related to configuration input when saving filters.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-14-373/
Scores
EPSS
0.0024
EPSS Percentile
46.5%
Details
CWE
CWE-20
Status
published
Products (4)
trendmicro/interscan_web_security_virtual_appliance
5.1
trendmicro/interscan_web_security_virtual_appliance
5.5
trendmicro/interscan_web_security_virtual_appliance
5.6
trendmicro/interscan_web_security_virtual_appliance
6.0
Published
Nov 07, 2014
Tracked Since
Feb 18, 2026