Lucene search
TrendmicroCVELIST:CVE-2022-25329HistoryFeb 24, 2022 - 2:45 a.m.
CVE-2022-25329
2022-02-2402:45:21
trendmicro
www.cve.org
1
Trend Micro ServerProtect 6.0/5.8 Information Server uses a static credential to perform authentication when a specific command is typed in the console. An unauthenticated remote attacker with access to the Information Server could exploit this to register to the server and perform authenticated actions.
CNA Affected
[
{
"product": "Trend Micro ServerProtect for Storage",
"vendor": "Trend Micro",
"versions": [
{
"status": "affected",
"version": "6.0"
}
]
},
{
"product": "Trend Micro ServerProtect for Microsoft Windows / Novell NetWare",
"vendor": "Trend Micro",
"versions": [
{
"status": "affected",
"version": "5.8"
}
]
},
{
"product": "Trend Micro ServerProtect for EMC Celerra",
"vendor": "Trend Micro",
"versions": [
{
"status": "affected",
"version": "5.8"
}
]
},
{
"product": "Trend Micro ServerProtect for Network Appliance Filers",
"vendor": "Trend Micro",
"versions": [
{
"status": "affected",
"version": "5.8"
}
]
}
]Related
nvd
nvd
CVE-2022-25329
2022-02-24 03:15:43
prion
prion
Design/Logic Flaw
2022-02-24 03:15:00
nessus
nessus
Trend Micro ServerProtect Static Credential (CVE-2022-25329)
2022-03-07 00:00:00
cve
cve
CVE-2022-25329
2022-02-24 03:15:43