Trend Micro VPN Proxy One Pro Vulnerable to Arbitrary File Overwrite and DoS Attacks

CVE-2024-36473

5.3MEDIUM

Key Information

Status
Trend Micro Vpn Proxy One Pro
Vendor
CVE Published:
10 June 2024

Summary

Trend Micro VPN Proxy One Pro, version 5.8.1012 and below is vulnerable to an arbitrary file overwrite or create attack but is limited to local Denial of Service (DoS) and under specific conditions can lead to elevation of privileges.

Affected Version(s)

Trend Micro VPN Proxy One Pro < 5.8.1012

Refferences

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

Collectors

NVD DatabaseMitre Database
.