← back
CVE-2017-9035

CVE-2017-9035

EPSS 3.6%
Trend Micro ServerProtect for Linux 3.0 before CP 1531 allows attackers to eavesdrop and tamper with updates by leveraging unencrypted communications with update servers.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/142645/Trend-Micro-ServerProtect-Disclosure-CSRF-XSS.htmlhttp://seclists.org/fulldisclosure/2017/May/91https://success.trendmicro.com/solution/1117411https://www.coresecurity.com/advisories/trend-micro-serverprotect-multiple-vulnerabilitieshttp://www.securitytracker.com/id/1038548