Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trendmicro control manager 6.0 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-3602
An AdHocQuery_Processor SQL injection remote code execution (RCE) vulnerability in Trend Micro Control Manager 6.0 could allow a remote malicious user to execute arbitrary code on vulnerable installations.
Trendmicro Control Manager 6.0
8.8
CVSSv3
CVE-2018-3604
GetXXX method SQL injection remote code execution (RCE) vulnerabilities in Trend Micro Control Manager 6.0 could allow a remote malicious user to execute arbitrary code on vulnerable installations.
Trendmicro Control Manager 6.0
8.8
CVSSv3
CVE-2018-3606
XXXStatusXXX, XXXSummary, TemplateXXX and XXXCompliance method SQL injection remote code execution (RCE) vulnerabilities in Trend Micro Control Manager 6.0 could allow a remote malicious user to execute arbitrary code on vulnerable installations.
Trendmicro Control Manager 6.0
7.5
CVSSv3
CVE-2016-6220
Information Disclosure vulnerability in the Dashboard and Error Pages in Trend Micro Control Manager SP3 6.0.
Trendmicro Control Manager 6.0
9.8
CVSSv3
CVE-2017-11383
SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when executing opcode 0x1b07 due to lack of proper user input validation in cmdHandlerTVCSCommander.dll. Formerly ZDI-CAN-4560.
Trendmicro Control Manager 6.0
9.8
CVSSv3
CVE-2017-11385
SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when executing opcode 0x6b1b due to lack of proper user input validation in cmdHandlerStatusMonitor.dll. Formerly ZDI-CAN-4545.
Trendmicro Control Manager 6.0
8.8
CVSSv3
CVE-2017-11388
SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when RestfulServiceUtility.NET.dll doesn't properly validate user provided strings before constructing SQL queries. Formerly ZDI-CAN-4639 and ZDI-CAN-4638.
Trendmicro Control Manager 6.0
7.5
CVSSv3
CVE-2017-11390
XML external entity (XXE) processing vulnerability in Trend Micro Control Manager 6.0, if exploited, could lead to information disclosure. Formerly ZDI-CAN-4706.
Trendmicro Control Manager 6.0
9.8
CVSSv3
CVE-2018-10510
A Directory Traversal Remote Code Execution vulnerability in Trend Micro Control Manager (versions 6.0 and 7.0) could allow an malicious user to execute arbitrary code on vulnerable installations.
Trendmicro Control Manager 7.0
Trendmicro Control Manager 6.0
7.5
CVSSv3
CVE-2018-10512
A vulnerability in Trend Micro Control Manager (versions 6.0 and 7.0) could allow an malicious user to manipulate a reverse proxy .dll on vulnerable installations, which may lead to a denial of server (DoS).
Trendmicro Control Manager 7.0
Trendmicro Control Manager 6.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2