SQL Injection Vulnerability in Trend Micro Email Encryption Gateway
CVE-2018-10351
8.8HIGH
Key Information:
- Vendor
Trend Micro
- Vendor
- CVE Published:
- 23 May 2018
What is CVE-2018-10351?
A weakness has been identified in the Trend Micro Email Encryption Gateway 5.5 that permits advanced attackers to execute arbitrary SQL commands on compromised installations. This flaw arises from the formRegistration2 class and necessitates user authentication to exploit. Ensuring timely updates and patching is critical to mitigate any potential risks associated with this vulnerability.
Affected Version(s)
Trend Micro Email Encryption Gateway 5.5