Vulnerability Details CVE-2020-8462
A cross-site scripting (XSS) vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 SP2 could allow an attacker to tamper with the web interface of the product.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 62.3%
CVSS Severity
CVSS v3 Score 4.8
CVSS v2 Score 3.5
References
- https://sec-consult.com/vulnerability-lab/advisory/multiple-critical-vulnerabilities-in-trend-micro-interscan-web-security-virtual-appliance/
- https://success.trendmicro.com/solution/000283077
- https://sec-consult.com/vulnerability-lab/advisory/multiple-critical-vulnerabilities-in-trend-micro-interscan-web-security-virtual-appliance/
- https://success.trendmicro.com/solution/000283077
Products affected by CVE-2020-8462
-
cpe:2.3:a:trendmicro:interscan_web_security_virtual_appliance:6.5