CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15365

A Reflected Cross-Site Scripting (XSS) vulnerability in Trend Micro Deep Discovery Inspector 3.85 and below could allow an attacker to bypass CSRF protection and conduct an attack on vulnerable installations. An attacker must be an authenticated user in order to exploit the vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.3%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

Products affected by CVE-2018-15365

Trendmicro » Deep Discovery Inspector » Version: N/A

cpe:2.3:a:trendmicro:deep_discovery_inspector:-
Trendmicro » Deep Discovery Inspector » Version: 3.5

cpe:2.3:a:trendmicro:deep_discovery_inspector:3.5
Trendmicro » Deep Discovery Inspector » Version: 3.6

cpe:2.3:a:trendmicro:deep_discovery_inspector:3.6
Trendmicro » Deep Discovery Inspector » Version: 3.7

cpe:2.3:a:trendmicro:deep_discovery_inspector:3.7
Trendmicro » Deep Discovery Inspector » Version: 3.8

cpe:2.3:a:trendmicro:deep_discovery_inspector:3.8
Trendmicro » Deep Discovery Inspector » Version: 3.85

cpe:2.3:a:trendmicro:deep_discovery_inspector:3.85

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15365

Products

Pricing

Contact Us