Lucene search

K

MitreCVELIST:CVE-2017-9032

HistoryMay 25, 2017 - 7:00 p.m.

CVE-2017-9032

2017-05-2519:00:00

mitre

www.cve.org

3

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

49.6%

Multiple cross-site scripting (XSS) vulnerabilities in Trend Micro ServerProtect for Linux 3.0 before CP 1531 allow remote attackers to inject arbitrary web script or HTML via the (1) T1 or (2) tmLastConfigFileModifiedDate parameter to log_management.cgi.

References

packetstormsecurity.com/files/142645/Trend-Micro-ServerProtect-Disclosure-CSRF-XSS.html

seclists.org/fulldisclosure/2017/May/91

www.securitytracker.com/id/1038548

success.trendmicro.com/solution/1117411

www.coresecurity.com/advisories/trend-micro-serverprotect-multiple-vulnerabilities

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

49.6%

Related for CVELIST:CVE-2017-9032

cve1 prion1 nvd1 packetstorm1 coresecurity1 zdt1