CVE-2017-11395

Summary

Command injection vulnerability in Trend Micro Smart Protection Server (Standalone) 3.1 and 3.2 server administration UI allows attackers with authenticated access to execute arbitrary code on vulnerable installations.

Affected Software

VendorProductVersion RangeStatus
Trend MicroSmart Protection Server (Standalone)3.1affected
Trend MicroSmart Protection Server (Standalone)3.2affected

Weaknesses

  • OS Command Injection

ADP Enrichment

CVE Program Container

Additional References

References