CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-8510

The AdminUI in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) before 6.0 HF build 1244 allows remote authenticated users to read arbitrary files via vectors related to configuration input when saving filters.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 46.5%

CVSS Severity

CVSS v2 Score 4.0

References

http://www.zerodayinitiative.com/advisories/ZDI-14-373/
http://www.zerodayinitiative.com/advisories/ZDI-14-373/

Products affected by CVE-2014-8510

Trendmicro » Interscan Web Security Virtual Appliance » Version: 5.1

cpe:2.3:a:trendmicro:interscan_web_security_virtual_appliance:5.1
Trendmicro » Interscan Web Security Virtual Appliance » Version: 5.5

cpe:2.3:a:trendmicro:interscan_web_security_virtual_appliance:5.5
Trendmicro » Interscan Web Security Virtual Appliance » Version: 5.6

cpe:2.3:a:trendmicro:interscan_web_security_virtual_appliance:5.6
Trendmicro » Interscan Web Security Virtual Appliance » Version: 6.0

cpe:2.3:a:trendmicro:interscan_web_security_virtual_appliance:6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-8510

Products

Pricing

Contact Us