CVE-2017-6798

CWE-4264 documents4 sources

Severity

7.8HIGH

EPSS

1.6%

top 18.15%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Trendmicro Endpoint Sensor

Timeline

PublishedMar 10

Latest updateMay 3

Description

Trend Micro Endpoint Sensor 1.6 before b1290 has a DLL hijacking vulnerability that allows remote attackers to execute arbitrary code, aka Trend Micro Vulnerability Identifier 2015-0208.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

▶NVDtrendmicro/endpoint_sensor1.6

Patches

Patch: success.trendmicro.com ↗Patch: success.trendmicro.com ↗

🔴Vulnerability Details

GHSA

GHSA-jvq2-j229-j9rv: Trend Micro Endpoint Sensor 1↗2022-05-03

▶

CVEList

CVE-2017-6798: Trend Micro Endpoint Sensor 1↗2017-03-10

▶