Описание
A vulnerability in Trend Micro ScanMail for Exchange 12.0 exists in which certain specific installations that utilize a uncommon feature - Other Update Sources - could be exploited to overwrite sensitive files in the ScanMail for Exchange directory.
Ссылки
- PatchVendor Advisory
- ExploitThird Party Advisory
- PatchVendor Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:trendmicro:scanmail:12.0:*:*:*:*:microsoft_exchange:*:*
EPSS
Процентиль: 48%
0.00254
Низкий
7.5 High
CVSS3
7.6 High
CVSS2
Дефекты
CWE-345
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
A vulnerability in Trend Micro ScanMail for Exchange 12.0 exists in which certain specific installations that utilize a uncommon feature - Other Update Sources - could be exploited to overwrite sensitive files in the ScanMail for Exchange directory.
EPSS
Процентиль: 48%
0.00254
Низкий
7.5 High
CVSS3
7.6 High
CVSS2
Дефекты
CWE-345