CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-48904

An command injection vulnerability in Trend Micro Cloud Edge could allow a remote attacker to execute arbitrary code on affected appliances. Please note: authentication is not required in order to exploit this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.05

EPSS Ranking 89.4%

CVSS Severity

CVSS v3 Score 9.8

References

https://success.trendmicro.com/en-US/solution/KA-0017998
https://www.zerodayinitiative.com/advisories/ZDI-24-1418/

Products affected by CVE-2024-48904

Trendmicro » Cloud Edge » Version: Any

cpe:2.3:a:trendmicro:cloud_edge:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-48904

Products

Pricing

Contact Us