Vulnerabilities > CVE-2017-11390 - XXE vulnerability in Trendmicro Control Manager 6.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
trendmicro
CWE-611

Summary

XML external entity (XXE) processing vulnerability in Trend Micro Control Manager 6.0, if exploited, could lead to information disclosure. Formerly ZDI-CAN-4706.

Vulnerable Configurations

Part Description Count
Application
Trendmicro
1