Vulnerability Details CVE-2020-8462
A cross-site scripting (XSS) vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 SP2 could allow an attacker to tamper with the web interface of the product.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.4%
CVSS Severity
CVSS v3 Score 4.8
CVSS v2 Score 3.5
References
- https://sec-consult.com/vulnerability-lab/advisory/multiple-critical-vulnerabilities-in-trend-micro-interscan-web-security-virtual-appliance/
- https://success.trendmicro.com/solution/000283077
- https://sec-consult.com/vulnerability-lab/advisory/multiple-critical-vulnerabilities-in-trend-micro-interscan-web-security-virtual-appliance/
- https://success.trendmicro.com/solution/000283077
Products affected by CVE-2020-8462
-
cpe:2.3:a:trendmicro:interscan_web_security_virtual_appliance:6.5