Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trendmicro smart protection server 3.2 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2017-11395
Command injection vulnerability in Trend Micro Smart Protection Server (Standalone) 3.1 and 3.2 server administration UI allows attackers with authenticated access to execute arbitrary code on vulnerable installations.
Trendmicro Smart Protection Server 3.1
Trendmicro Smart Protection Server 3.2
9.8
CVSSv3
CVE-2017-14094
A vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an malicious user to perform remote command execution via a cron job injection on a vulnerable system.
Trendmicro Smart Protection Server
1 EDB exploit
8.1
CVSSv3
CVE-2017-14095
A vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an malicious user to perform remote command execution via a local file inclusion on a vulnerable system.
Trendmicro Smart Protection Server
1 EDB exploit
6.1
CVSSv3
CVE-2017-14096
A stored cross site scripting (XSS) vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an malicious user to execute a malicious payload on vulnerable systems.
Trendmicro Smart Protection Server
1 EDB exploit
9.8
CVSSv3
CVE-2017-14097
An improper access control vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an malicious user to decrypt contents of a database with information that could be used to access a vulnerable system.
Trendmicro Smart Protection Server
1 EDB exploit
8.8
CVSSv3
CVE-2017-11398
A session hijacking via log disclosure vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an unauthenticated malicious user to hijack active user sessions to perform authenticated requests on a vulnerable system.
Trendmicro Smart Protection Server
1 EDB exploit
7.5
CVSSv3
CVE-2018-6237
A vulnerability in Trend Micro Smart Protection Server (Standalone) 3.x could allow an unauthenticated remote malicious user to manipulate the product to send a large number of specially crafted HTTP requests to potentially cause the file system to fill up, eventually causing a d...
Trendmicro Smart Protection Server 3.3
Trendmicro Smart Protection Server 3.2
Trendmicro Smart Protection Server 3.1
Trendmicro Smart Protection Server 3.0
8.8
CVSSv3
CVE-2018-10350
A SQL injection remote code execution vulnerability in Trend Micro Smart Protection Server (Standalone) 3.x could allow a remote malicious user to execute arbitrary code on vulnerable installations due to a flaw within the handling of parameters provided to wcs\_bwlists\_handler....
Trendmicro Smart Protection Server 3.3
Trendmicro Smart Protection Server 3.2
Trendmicro Smart Protection Server 3.0
Trendmicro Smart Protection Server 3.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started