Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in Trend Micro ServerProtect for Linux 3.0 before CP 1531 allows remote attackers to hijack the authentication of users for requests to start an update from an arbitrary source via a crafted request to SProtectLinux/scanoption_set.cgi, related to the lack of anti-CSRF tokens.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Trend Micro ServerProtect for Linux 跨站请求伪造漏洞
Vulnerability Description
Trend Micro ServerProtect for Linux是美国趋势科技(Trend Micro)公司的一款用于Linux中在病毒到达终端用户之前即予以封锁,防止扩展到整个网络的杀毒软件。 Trend Micro ServerProtect for Linux 3.0版本中存在跨站请求伪造漏洞。远程攻击者可通过向SProtectLinux/scanoption_set.cgi发送特制的请求利用该漏洞执行未授权的操作。
CVSS Information
N/A
Vulnerability Type
N/A