cvelistv5 - cve-2017-11396

CVE-2017-11396 (GCVE-0-2017-11396)

Vulnerability from cvelistv5 – Published: 2017-09-22 16:00 – Updated: 2024-09-16 17:04

Summary

Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code injections.

Severity ?

No CVSS data available.

CWE

Other (Input Parameter Inspection)

Assigner

trendmicro

References

URL

Tags

https://success.trendmicro.com/solution/1117412

x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Trend Micro	InterScan Web Security Virtual Appliance	Affected: 6.5

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T18:05:30.667Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://success.trendmicro.com/solution/1117412"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "InterScan Web Security Virtual Appliance",
          "vendor": "Trend Micro",
          "versions": [
            {
              "status": "affected",
              "version": "6.5"
            }
          ]
        }
      ],
      "datePublic": "2017-05-22T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code injections."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Other (Input Parameter Inspection)",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-22T15:57:01",
        "orgId": "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
        "shortName": "trendmicro"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://success.trendmicro.com/solution/1117412"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@trendmicro.com",
          "DATE_PUBLIC": "2017-05-22T00:00:00",
          "ID": "CVE-2017-11396",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "InterScan Web Security Virtual Appliance",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "6.5"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Trend Micro"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code injections."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Other (Input Parameter Inspection)"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://success.trendmicro.com/solution/1117412",
              "refsource": "CONFIRM",
              "url": "https://success.trendmicro.com/solution/1117412"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
    "assignerShortName": "trendmicro",
    "cveId": "CVE-2017-11396",
    "datePublished": "2017-09-22T16:00:00Z",
    "dateReserved": "2017-07-17T00:00:00",
    "dateUpdated": "2024-09-16T17:04:05.359Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:trendmicro:interscan_web_security_virtual_appliance:6.5:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"DFF71E3A-0C66-4FCC-AEEE-3CCFBDCF3ADD\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code injections.\"}, {\"lang\": \"es\", \"value\": \"Los problemas de vulnerabilidades con la inspecci\\u00f3n del servicio web de par\\u00e1metros de entrada en la versi\\u00f3n 6.5 de Trend Micro Web Security Virtual Appliance podr\\u00eda permitir que los atacantes que ya posean derechos de administraci\\u00f3n en la consola implementen inyecciones remotas de c\\u00f3digo.\"}]",
      "id": "CVE-2017-11396",
      "lastModified": "2024-11-21T03:07:42.103",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.2, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.2, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:S/C:C/I:C/A:C\", \"baseScore\": 9.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.0, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2017-09-22T16:29:00.247",
      "references": "[{\"url\": \"https://success.trendmicro.com/solution/1117412\", \"source\": \"security@trendmicro.com\", \"tags\": [\"Mitigation\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://success.trendmicro.com/solution/1117412\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mitigation\", \"Patch\", \"Vendor Advisory\"]}]",
      "sourceIdentifier": "security@trendmicro.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2017-11396\",\"sourceIdentifier\":\"security@trendmicro.com\",\"published\":\"2017-09-22T16:29:00.247\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code injections.\"},{\"lang\":\"es\",\"value\":\"Los problemas de vulnerabilidades con la inspecci\u00f3n del servicio web de par\u00e1metros de entrada en la versi\u00f3n 6.5 de Trend Micro Web Security Virtual Appliance podr\u00eda permitir que los atacantes que ya posean derechos de administraci\u00f3n en la consola implementen inyecciones remotas de c\u00f3digo.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.2,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:C/I:C/A:C\",\"baseScore\":9.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:trendmicro:interscan_web_security_virtual_appliance:6.5:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFF71E3A-0C66-4FCC-AEEE-3CCFBDCF3ADD\"}]}]}],\"references\":[{\"url\":\"https://success.trendmicro.com/solution/1117412\",\"source\":\"security@trendmicro.com\",\"tags\":[\"Mitigation\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://success.trendmicro.com/solution/1117412\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Patch\",\"Vendor Advisory\"]}]}}"
  }
}

GHSA-CRHV-G6X9-9C8C

Vulnerability from github – Published: 2022-05-13 01:23 – Updated: 2022-05-13 01:23

Details

Severity ?

7.2 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2017-11396"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2017-09-22T16:29:00Z",
    "severity": "HIGH"
  },
  "details": "Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code injections.",
  "id": "GHSA-crhv-g6x9-9c8c",
  "modified": "2022-05-13T01:23:14Z",
  "published": "2022-05-13T01:23:14Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-11396"
    },
    {
      "type": "WEB",
      "url": "https://success.trendmicro.com/solution/1117412"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

JVNDB-2017-007422

Vulnerability from jvndb - Published: 2017-09-21 15:58 - Updated:2018-03-07 14:32

Severity ?

7.2 (High) - cvssV3_0 - CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Summary

InterScan Web Security Virtual Appliance vulnerable to code injection

Details

InterScan Web Security Virtual Appliance provided by Trend Micro Incorporated contains code injection vulnerability.

References

Type

URL

	JVN	http://jvn.jp/en/vu/JVNVU90447827/index.html
	CVE	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11396
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-11396

Impacted products

Vendor

Product

Trend Micro, Inc.

TrendMicro InterScan Web Security Virtual Appliance

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-007422.html",
  "dc:date": "2018-03-07T14:32+09:00",
  "dcterms:issued": "2017-09-21T15:58+09:00",
  "dcterms:modified": "2018-03-07T14:32+09:00",
  "description": "InterScan Web Security Virtual Appliance provided by Trend Micro Incorporated contains code injection vulnerability.",
  "link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-007422.html",
  "sec:cpe": {
    "#text": "cpe:/a:trendmicro:interscan_web_security_virtual_appliance",
    "@product": "TrendMicro InterScan Web Security Virtual Appliance",
    "@vendor": "Trend Micro, Inc.",
    "@version": "2.2"
  },
  "sec:cvss": [
    {
      "@score": "9.0",
      "@severity": "High",
      "@type": "Base",
      "@vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
      "@version": "2.0"
    },
    {
      "@score": "7.2",
      "@severity": "High",
      "@type": "Base",
      "@vector": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
      "@version": "3.0"
    }
  ],
  "sec:identifier": "JVNDB-2017-007422",
  "sec:references": [
    {
      "#text": "http://jvn.jp/en/vu/JVNVU90447827/index.html",
      "@id": "JVNVU#90447827",
      "@source": "JVN"
    },
    {
      "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11396",
      "@id": "CVE-2017-11396",
      "@source": "CVE"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2017-11396",
      "@id": "CVE-2017-11396",
      "@source": "NVD"
    }
  ],
  "title": "InterScan Web Security Virtual Appliance vulnerable to code injection"
}

FKIE_CVE-2017-11396

Vulnerability from fkie_nvd - Published: 2017-09-22 16:29 - Updated: 2025-04-20 01:37

Severity ?

7.2 (High) - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	security@trendmicro.com	https://success.trendmicro.com/solution/1117412	Mitigation, Patch, Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://success.trendmicro.com/solution/1117412	Mitigation, Patch, Vendor Advisory

Impacted products

	Vendor	Product	Version
	trendmicro	interscan_web_security_virtual_appliance	6.5

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:trendmicro:interscan_web_security_virtual_appliance:6.5:-:*:*:*:*:*:*",
              "matchCriteriaId": "DFF71E3A-0C66-4FCC-AEEE-3CCFBDCF3ADD",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code injections."
    },
    {
      "lang": "es",
      "value": "Los problemas de vulnerabilidades con la inspecci\u00f3n del servicio web de par\u00e1metros de entrada en la versi\u00f3n 6.5 de Trend Micro Web Security Virtual Appliance podr\u00eda permitir que los atacantes que ya posean derechos de administraci\u00f3n en la consola implementen inyecciones remotas de c\u00f3digo."
    }
  ],
  "id": "CVE-2017-11396",
  "lastModified": "2025-04-20T01:37:25.860",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.2,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.2,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-09-22T16:29:00.247",
  "references": [
    {
      "source": "security@trendmicro.com",
      "tags": [
        "Mitigation",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://success.trendmicro.com/solution/1117412"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mitigation",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://success.trendmicro.com/solution/1117412"
    }
  ],
  "sourceIdentifier": "security@trendmicro.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CNVD-2017-34024

Vulnerability from cnvd - Published: 2017-11-15

Title

Trend Micro Web Security Virtual Appliance远程代码执行漏洞

Description

Trend Micro Web Security Virtual Appliance是美国趋势科技（Trend Micro）公司的一款针对基于Web方式的威胁为企业网络提供动态的、集成式的安全保护的Web安全网关。 Trend Micro Web Security Virtual Appliance 6.5版本中Web服务检测输入参数的过程存在安全漏洞。远程攻击者可利用该漏洞执行代码。

Severity

高

Patch Name

Trend Micro Web Security Virtual Appliance远程代码执行漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://success.trendmicro.com/solution/1117412

Reference

https://nvd.nist.gov/vuln/detail/CVE-2017-11396

Impacted products

Name
Trend Micro Web Security Virtual Appliance 6.5

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-11396"
    }
  },
  "description": "Trend Micro Web Security Virtual Appliance\u662f\u7f8e\u56fd\u8d8b\u52bf\u79d1\u6280\uff08Trend Micro\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u9488\u5bf9\u57fa\u4e8eWeb\u65b9\u5f0f\u7684\u5a01\u80c1\u4e3a\u4f01\u4e1a\u7f51\u7edc\u63d0\u4f9b\u52a8\u6001\u7684\u3001\u96c6\u6210\u5f0f\u7684\u5b89\u5168\u4fdd\u62a4\u7684Web\u5b89\u5168\u7f51\u5173\u3002\r\n\r\nTrend Micro Web Security Virtual Appliance 6.5\u7248\u672c\u4e2dWeb\u670d\u52a1\u68c0\u6d4b\u8f93\u5165\u53c2\u6570\u7684\u8fc7\u7a0b\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4ee3\u7801\u3002",
  "discovererName": "unknown",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://success.trendmicro.com/solution/1117412",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-34024",
  "openTime": "2017-11-15",
  "patchDescription": "Trend Micro Web Security Virtual Appliance\u662f\u7f8e\u56fd\u8d8b\u52bf\u79d1\u6280\uff08Trend Micro\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u9488\u5bf9\u57fa\u4e8eWeb\u65b9\u5f0f\u7684\u5a01\u80c1\u4e3a\u4f01\u4e1a\u7f51\u7edc\u63d0\u4f9b\u52a8\u6001\u7684\u3001\u96c6\u6210\u5f0f\u7684\u5b89\u5168\u4fdd\u62a4\u7684Web\u5b89\u5168\u7f51\u5173\u3002\r\n\r\nTrend Micro Web Security Virtual Appliance 6.5\u7248\u672c\u4e2dWeb\u670d\u52a1\u68c0\u6d4b\u8f93\u5165\u53c2\u6570\u7684\u8fc7\u7a0b\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Trend Micro Web Security Virtual Appliance\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Trend Micro Web Security Virtual Appliance 6.5"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2017-11396",
  "serverity": "\u9ad8",
  "submitTime": "2017-09-25",
  "title": "Trend Micro Web Security Virtual Appliance\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"
}

GSD-2017-11396

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2017-11396

Aliases

CVE-2017-11396

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2017-11396",
    "description": "Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code injections.",
    "id": "GSD-2017-11396"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2017-11396"
      ],
      "details": "Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code injections.",
      "id": "GSD-2017-11396",
      "modified": "2023-12-13T01:21:15.339095Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@trendmicro.com",
        "DATE_PUBLIC": "2017-05-22T00:00:00",
        "ID": "CVE-2017-11396",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "InterScan Web Security Virtual Appliance",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "6.5"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Trend Micro"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code injections."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Other (Input Parameter Inspection)"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://success.trendmicro.com/solution/1117412",
            "refsource": "CONFIRM",
            "url": "https://success.trendmicro.com/solution/1117412"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:trendmicro:interscan_web_security_virtual_appliance:6.5:-:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@trendmicro.com",
          "ID": "CVE-2017-11396"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code injections."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-noinfo"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://success.trendmicro.com/solution/1117412",
              "refsource": "CONFIRM",
              "tags": [
                "Mitigation",
                "Patch",
                "Vendor Advisory"
              ],
              "url": "https://success.trendmicro.com/solution/1117412"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 1.2,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2020-08-19T19:12Z",
      "publishedDate": "2017-09-22T16:29Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2017-11396 (GCVE-0-2017-11396)

GHSA-CRHV-G6X9-9C8C

JVNDB-2017-007422

FKIE_CVE-2017-11396

CNVD-2017-34024

GSD-2017-11396

Tags

Sightings

Nomenclature