CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-8603

A cross-site scripting vulnerability (XSS) in Trend Micro InterScan Web Security Virtual Appliance 6.5 may allow a remote attacker to tamper with the web interface of affected installations. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.3%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://success.trendmicro.com/solution/000253095
https://www.zerodayinitiative.com/advisories/ZDI-20-675/
https://success.trendmicro.com/solution/000253095
https://www.zerodayinitiative.com/advisories/ZDI-20-675/

Products affected by CVE-2020-8603

Trendmicro » Interscan Web Security Virtual Appliance » Version: 6.5

cpe:2.3:a:trendmicro:interscan_web_security_virtual_appliance:6.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-8603

Products

Pricing

Contact Us