CVE-2016-9314

moderate-risk

Published 2017-02-21

Sensitive Information Disclosure in com.trend.iwss.gui.servlet.ConfigBackup in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) version 6.5-SP2_Build_Linux_1707 and earlier allows authenticated, remote users with least privileges to backup the system configuration and download it onto their local machine. This backup file contains sensitive information like passwd/shadow files, RSA certificates, Private Keys and Default Passphrase, etc. This was resolved in Version 6.5 CP 1737.

Do I need to act?

1.5% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

1 public exploit available

41361

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.8/10 High

LOCAL / LOW complexity

Affected Products (1)

Interscan Web Security Virtual Appliance

Affected Vendors

Trendmicro

References (6)

http://www.securityfocus.com/bid/96252

http://www.securitytracker.com/id/1037849

Patch https://success.trendmicro.com/solution/1116672

http://www.securityfocus.com/bid/96252

http://www.securitytracker.com/id/1037849

Patch https://success.trendmicro.com/solution/1116672

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 11/34 · Low

Exposure 5/34 · Minimal