CVE-2025-31286

Опубликовано: 02 апр. 2025

Источник: nvd

CVSS3: 4.6

CVSS3: 9

EPSS Низкий

Описание

An HTML injection vulnerability previously discovered in Trend Vision One could have allowed a malicious user to execute arbitrary code.

Please note: this issue has already been addressed on the backend service and is no longer considered an active vulnerability.

Ссылки

https://success.trendmicro.com/en-US/solution/KA-0019386
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:trendmicro:trend_vision_one:-:*:*:*:*:*:*:*

EPSS

Процентиль: 42%

0.00199

Низкий

4.6 Medium

CVSS3

9 Critical

CVSS3

Дефекты

CWE-269

CWE-79

Связанные уязвимости

GHSA-f39p-623w-5v5j

github

10 месяцев назад

An HTML injection vulnerability previously discovered in Trend Vision One could have allowed a malicious user to execute arbitrary code. Please note: this issue has already been addressed on the backend service and is no longer considered an active vulnerability.

EPSS

Процентиль: 42%

0.00199

Низкий

4.6 Medium

CVSS3

9 Critical

CVSS3

Дефекты

CWE-269

CWE-79