Short Name |
HTTP:SQL:TRENDMICRO-IWSVA-SQL |
---|---|
Severity |
Minor |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Trend Micro IWSVA DeploymentWizardAction Command Injection |
Release Date |
2017/08/30 |
Update Number |
2985 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
A command injection vulnerability has been reported in Trend Micro InterScan Web Security Virtual Appliance (IWSVA). Successful exploitation of this vulnerability can lead to remote command execution in the context of the root.