Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The hotfix_upload.cgi in Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier allows remote authenticated users to execute arbitrary code via shell metacharacters in the file name of an uploaded file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Trend Micro Threat Discovery Appliance 安全漏洞
Vulnerability Description
Trend Micro Threat Discovery Appliance(TDA)是美国趋势科技(Trend Micro)公司的一款集成云安全技术的威胁发现设备。该设备提供网络层恶意活动的检测、威胁管理服务以及威胁分析和报表等功能。 Trend Micro TDA 2.6.1062r1及之前的版本中的hotfix_upload.cgi文件存在安全漏洞。远程攻击者可借助上传文件名中的shell元字符利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A