Critical severity9.9NVD Advisory· Published Feb 21, 2017· Updated May 13, 2026

CVE-2016-9269

Description

Remote Command Execution in com.trend.iwss.gui.servlet.ManagePatches in Trend Micro Interscan Web Security Virtual Appliance (IWSVA) version 6.5-SP2_Build_Linux_1707 and earlier allows authenticated, remote users with least privileges to run arbitrary commands on the system as root via Patch Update functionality. This was resolved in Version 6.5 CP 1737.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

success.trendmicro.com/solution/1116672nvdPatchVendor Advisory
www.securityfocus.com/bid/96252nvd
www.securitytracker.com/id/1037849nvd

News mentions

No linked articles in our index yet.

cvss	0.643
epss	0.005
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000