Trend Micro VPN Proxy One Pro Vulnerable to Arbitrary File Overwrite and DoS Attacks
CVE-2024-36473
5.3MEDIUM
Key Information
- Vendor
- Trend Micro
- Status
- Trend Micro Vpn Proxy One Pro
- Vendor
- CVE Published:
- 10 June 2024
Summary
Trend Micro VPN Proxy One Pro, version 5.8.1012 and below is vulnerable to an arbitrary file overwrite or create attack but is limited to local Denial of Service (DoS) and under specific conditions can lead to elevation of privileges.
Affected Version(s)
Trend Micro VPN Proxy One Pro < 5.8.1012
Refferences
CVSS V3.1
Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Collectors
NVD DatabaseMitre Database