CVE-2017-14082

CWE-200Information Exposure3 documents3 sources
Severity
7.5HIGH
EPSS
2.7%
top 14.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Trendmicro Mobile SecurityTrend Micro Trend Micro Mobile Security (enterprise)
Timeline
PublishedJan 19
Latest updateMay 14

Description

An uninitialized pointer information disclosure vulnerability in Trend Micro Mobile Security (Enterprise) versions 9.7 and below could allow an unauthenticated remote attacker to disclosure sensitive information on a vulnerable system.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-772w-c7mm-w6x3: An uninitialized pointer information disclosure vulnerability in Trend Micro Mobile Security (Enterprise) versions 92022-05-14
CVEList
CVE-2017-14082: An uninitialized pointer information disclosure vulnerability in Trend Micro Mobile Security (Enterprise) versions 92018-01-19
CVE-2017-14082 (HIGH CVSS 7.5) | An uninitialized pointer informatio | cvebase.io