CVE-2017-14090

CWE-3263 documents3 sources
Severity
9.1CRITICAL
EPSS
0.3%
top 47.59%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Trend Micro Trend Micro Scanmail FOR ExchangeTrendmicro Scanmail
Timeline
PublishedDec 16
Latest updateMay 14

Description

A vulnerability in Trend Micro ScanMail for Exchange 12.0 exists in which some communications to the update servers are not encrypted.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NExploitability: 3.9 | Impact: 5.2

Affected Packages2 packages

Patches

Patch: success.trendmicro.comPatch: success.trendmicro.com

🔴Vulnerability Details

2
GHSA
GHSA-67rp-qvhx-gp49: A vulnerability in Trend Micro ScanMail for Exchange 122022-05-14
CVEList
CVE-2017-14090: A vulnerability in Trend Micro ScanMail for Exchange 122017-12-15
CVE-2017-14090 (CRITICAL CVSS 9.1) | A vulnerability in Trend Micro Scan | cvebase.io