9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
45.4%
The absence of Anti-CSRF tokens in Trend Micro ScanMail for Exchange 12.0 web interface forms could allow an attacker to submit authenticated requests when an authenticated user browses an attacker-controlled domain.
success.trendmicro.com/solution/1118486
www.coresecurity.com/advisories/trend-micro-scanmail-microsoft-exchange-multiple-vulnerabilities