CVE-2017-6338

MEDIUM

Trend Micro InterScan Web Security Virtual Appliance < 6.5 - Incorrect Permission Assignment

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-6338.

AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in Trend Micro IWSVA 6.5.x, including sensitive information disclosure (CVE-2017-6339) and incorrect access control (CVE-2017-6338). It provides functional HTTP requests to download CA certificates/private keys and upload malicious certificates, compromising HTTPS traffic decryption.

Description

Multiple Access Control issues in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 allow an authenticated, remote user with low privileges like 'Reports Only' or 'Auditor' to change FTP Access Control Settings, create or modify reports, or upload an HTTPS Decryption Certificate and Private Key.

Exploits (1)

exploitdb WORKING POC
webappshardware
https://www.exploit-db.com/exploits/42013

The exploit demonstrates multiple vulnerabilities in Trend Micro IWSVA 6.5.x, including sensitive information disclosure (CVE-2017-6339) and incorrect access control (CVE-2017-6338). It provides functional HTTP requests to download CA certificates/private keys and upload malicious certificates, compromising HTTPS traffic decryption.

Classification
Working Poc 95%
Attack Type
Info Leak | Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: Trend Micro Interscan Web Security Virtual Appliance (IWSVA) 6.5.x
Auth required
Prerequisites: Valid low-privilege user credentials · Network access to IWSVA web console
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3
Core References
Patch, Vendor Advisory x_refsource_misc
https://success.trendmicro.com/solution/1116960
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/97482
Exploit, Technical Description, Third Party Advisory x_refsource_misc
https://www.qualys.com/2017/01/12/qsa-2017-01-12/qsa-2017-01-12.pdf

Scores

CVSS v3 6.5
EPSS 0.0392
EPSS Percentile 89.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-732
Status published
Products (1)
trendmicro/interscan_web_security_virtual_appliance < 6.5
Published Apr 05, 2017
Tracked Since Feb 18, 2026