Описание
XXXStatusXXX, XXXSummary, TemplateXXX and XXXCompliance method SQL injection remote code execution (RCE) vulnerabilities in Trend Micro Control Manager 6.0 could allow a remote attacker to execute arbitrary code on vulnerable installations.
XXXStatusXXX, XXXSummary, TemplateXXX and XXXCompliance method SQL injection remote code execution (RCE) vulnerabilities in Trend Micro Control Manager 6.0 could allow a remote attacker to execute arbitrary code on vulnerable installations.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2018-3606
- https://success.trendmicro.com/solution/1119158
- https://www.zerodayinitiative.com/advisories/ZDI-18-083
- https://www.zerodayinitiative.com/advisories/ZDI-18-085
- https://www.zerodayinitiative.com/advisories/ZDI-18-086
- https://www.zerodayinitiative.com/advisories/ZDI-18-089
- https://www.zerodayinitiative.com/advisories/ZDI-18-091
- https://www.zerodayinitiative.com/advisories/ZDI-18-092
- https://www.zerodayinitiative.com/advisories/ZDI-18-093
- https://www.zerodayinitiative.com/advisories/ZDI-18-099
- https://www.zerodayinitiative.com/advisories/ZDI-18-100
- https://www.zerodayinitiative.com/advisories/ZDI-18-101
- https://www.zerodayinitiative.com/advisories/ZDI-18-103
- https://www.zerodayinitiative.com/advisories/ZDI-18-104
- https://www.zerodayinitiative.com/advisories/ZDI-18-105
- https://www.zerodayinitiative.com/advisories/ZDI-18-106
- https://www.zerodayinitiative.com/advisories/ZDI-18-107
- https://www.zerodayinitiative.com/advisories/ZDI-18-108
- https://www.zerodayinitiative.com/advisories/ZDI-18-110
Связанные уязвимости
CVSS3: 8.8
nvd
почти 8 лет назад
XXXStatusXXX, XXXSummary, TemplateXXX and XXXCompliance method SQL injection remote code execution (RCE) vulnerabilities in Trend Micro Control Manager 6.0 could allow a remote attacker to execute arbitrary code on vulnerable installations.