Vulnerability in Trend Micro Deep Discovery Inspector Could Allow Sensitive Information Disclosure

CVE-2024-46902

9.1CRITICAL

Key Information

Status
Deep Discovery Inspector
Vendor
CVE Published:
22 October 2024

Summary

A vulnerability in Trend Micro Deep Discovery Inspector (DDI) versions 5.8 and above could allow an attacker to disclose sensitive information affected installations.

Please note: an attacker must first obtain the ability to execute high-privileged code (admin user rights) on the target system in order to exploit this vulnerability.

Refferences

CVSS V3.1

Score:
9.1
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

Collectors

NVD Database
.