Library Vulnerability in Trend Micro InterScan Messaging Security Virtual Appliance
CVE-2020-27694

8.8HIGH

Key Information:

Vendor
Trend Micro
Status
Trend Micro Interscan Messaging Security Virtual Appliance (imsva)
Vendor
CVE Published:
9 November 2020

Summary

The Trend Micro InterScan Messaging Security Virtual Appliance (IMSVA) version 9.1 has a vulnerability due to an outdated critical library. This flaw may allow attackers to exploit the system, potentially compromising the security of email communications processed by the appliance. Ensuring the library is updated and patched is essential for maintaining the integrity and security of the messaging environment.

Affected Version(s)

Trend Micro InterScan Messaging Security Virtual Appliance (IMSVA) 9.1

References

https://success.trendmicro.com/solution/000279833
x_refsource_MISC
https://sec-consult.com/en/blog/advisories/vulnerabilitie...
x_refsource_MISC

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.