Описание
An unvalidated software update vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a man-in-the-middle attacker to tamper with an update file and inject their own.
Ссылки
- PatchVendor Advisory
- ExploitTechnical DescriptionThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- PatchVendor Advisory
- ExploitTechnical DescriptionThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:trendmicro:email_encryption_gateway:5.5:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04505
Низкий
8.1 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-295
Связанные уязвимости
CVSS3: 8.1
github
больше 3 лет назад
An unvalidated software update vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a man-in-the-middle attacker to tamper with an update file and inject their own.
EPSS
Процентиль: 89%
0.04505
Низкий
8.1 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-295