Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An XML external entity injection (XXE) vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an authenticated user to expose a normally protected configuration script.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Trend Micro Email Encryption Gateway 安全漏洞
Vulnerability Description
Trend Micro Email Encryption是美国趋势科技(Trend Micro)公司的一套基于身份的具有电子邮件加密功能的解决方案。Trend Micro Email Encryption Gateway(TMEEG)是其中的一个提供数据保护的网关产品。 TMEEG 5.5 Build 1111及之前版本中的配置脚本存在XML外部实体注入漏洞。远程攻击者可借助‘pciExceptionXml’参数发送特制的XML数据利用该漏洞获取受保护的配置脚本。
CVSS Information
N/A
Vulnerability Type
N/A