Arbitrary File Read Vulnerability in Trend Micro InterScan Web Security Virtual Appliance (IWSVA)

Arbitrary File Read Vulnerability in Trend Micro InterScan Web Security Virtual Appliance (IWSVA)

CVE-2014-8510 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

The AdminUI in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) before 6.0 HF build 1244 allows remote authenticated users to read arbitrary files via vectors related to configuration input when saving filters.

Learn more about our Web App Pen Testing.