Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Trend Micro Deep Discovery Inspector (DDI) on Deep Discovery Threat appliances with software before 3.5.1477, 3.6.x before 3.6.1217, 3.7.x before 3.7.1248, 3.8.x before 3.8.1263, and other versions allows remote attackers to obtain sensitive information or change the configuration via a direct request to the (1) system log URL, (2) whitelist URL, or (3) blacklist URL.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Trend Micro Deep Discovery Threat Deep Discovery Inspector 权限许可和访问控制问题漏洞
Vulnerability Description
Trend Micro Deep Discovery Inspector(DDI)on Deep Discovery Threat是美国趋势科技(Trend Micro)公司的一款运行于威胁防护平台能够实时侦测和辨识不易发现的威胁并提出解决方案的防护产品。 Deep Discovery Threat设备上的Trend Micro DDI中存在身份验证绕过漏洞。远程攻击者可通过向系统日志URL、白名单列表URL,或黑名单列表URL发送直接请求利用该漏洞获取敏感信息,或更改配置。以下版本受到影响:使用3.5.
CVSS Information
N/A
Vulnerability Type
N/A