CVE-2018-6237
published 2018-05-25CVE-2018-6237: A vulnerability in Trend Micro Smart Protection Server (Standalone) 3.x could allow an unauthenticated remote attacker to manipulate the product to send a…
PriorityP343high7.5CVSS 3.0
AVNACLPRNUINSUCNINAH
EPSS
6.38%
92.8th percentile
A vulnerability in Trend Micro Smart Protection Server (Standalone) 3.x could allow an unauthenticated remote attacker to manipulate the product to send a large number of specially crafted HTTP requests to potentially cause the file system to fill up, eventually causing a denial of service (DoS) situation.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| trend_micro | trend_micro_smart_protection_server | — | — |
| trendmicro | smart_protection_server | — | — |
| trendmicro | smart_protection_server | — | — |
| trendmicro | smart_protection_server | — | — |
| trendmicro | smart_protection_server | — | — |
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.07.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Tenable
Tenable Research: May Vulnerability Disclosure Roundup
blogs_tenable·2018-06-26
Tenable Research: May Vulnerability Disclosure Roundup
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Tenable
Tenable Research: May Vulnerability Disclosure Roundup
blogs_tenable·2018-06-26·CVSS 9.8
[CRITICAL] Tenable Research: May Vulnerability Disclosure Roundup
Blog / Research
Subscribe
# Tenable Research: May Vulnerability Disclosure Roundup
Tenable Research
June 26, 2018
3 Min Read
Tenable Research has a dedicated team that performs vulnerability research on software and hardware from third-party vendors. The goal is to discover zero-day vulnerabilities and work with vendors to get them addressed before hackers discover and exploit them. This post provides an overview of all the vulnerabilities discovered by Tenable Research in May.
You can access all Tenable Research advisories here.
Cisco Prime Data Center Network Manager Remote Code Execution Vulnerability
CVE ID: CVE-2018-0258
Tenable Research Advisory: TRA-2018-11
Risk Factor: Critical
What do you need to know?
Tenable Research discovered a relative path traversal vulnerability
2018-05-25
Published