Vulnerability Description
Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 does not sanitize a rest/commonlog/report/template name field, which allows a 'Reports Only' user to inject malicious JavaScript while creating a new report. Additionally, IWSVA implements incorrect access control that allows any authenticated, remote user (even with low privileges like 'Auditor') to create or modify reports, and consequently take advantage of this XSS vulnerability. The JavaScript is executed when victims visit reports or auditlog pages.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Trendmicro | Interscan Web Security Virtual Appliance | <= 6.5 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/97487Third Party AdvisoryVDB Entry
- https://success.trendmicro.com/solution/1116960PatchVendor Advisory
- https://www.qualys.com/2017/01/12/qsa-2017-01-12/qsa-2017-01-12.pdfExploitTechnical DescriptionThird Party Advisory
- http://www.securityfocus.com/bid/97487Third Party AdvisoryVDB Entry
- https://success.trendmicro.com/solution/1116960PatchVendor Advisory
- https://www.qualys.com/2017/01/12/qsa-2017-01-12/qsa-2017-01-12.pdfExploitTechnical DescriptionThird Party Advisory
FAQ
What is CVE-2017-6340?
CVE-2017-6340 is a vulnerability with a CVSS score of 5.4 (MEDIUM). Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 does not sanitize a rest/commonlog/report/template name field, which allows a 'Reports Only' user to inject malicious Ja...
How severe is CVE-2017-6340?
CVE-2017-6340 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-6340?
Check the references section above for vendor advisories and patch information. Affected products include: Trendmicro Interscan Web Security Virtual Appliance.