Vulnerabilities > CVE-2018-10511 - Server-Side Request Forgery (SSRF) vulnerability in Trendmicro Control Manager 6.0/7.0

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

trendmicro

CWE-918

critical

NVD

Published: 2018-08-15

Updated: 2024-11-21

Summary

A vulnerability in Trend Micro Control Manager (versions 6.0 and 7.0) could allow an attacker to conduct a server-side request forgery (SSRF) attack on vulnerable installations.

Vulnerable Configurations

Part	Description	Count
Application	Trendmicro Trendmicro Control Manager 6.0 Trendmicro Control Manager 7.0	2

Common Weakness Enumeration (CWE)

CWE-918 - Server-Side Request Forgery (SSRF)

References

https://success.trendmicro.com/solution/1120112
https://success.trendmicro.com/solution/1120112