CVE-2024-46903

CWE-89SQL Injection3 documents3 sources
Severity
6.5MEDIUM
EPSS
0.8%
top 26.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Trend Micro, Inc. Trend Micro Deep Discovery InspectorTrendmicro Deep Discovery Inspector
Timeline
PublishedOct 22

Description

A vulnerability in Trend Micro Deep Discovery Inspector (DDI) versions 5.8 and above could allow an attacker to disclose sensitive information affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5trend_micro,_inc./trend_micro_deep_discovery_inspector5.8, 6.6, 6.76.6.1097, 6.7.1107

🔴Vulnerability Details

2
CVEList
CVE-2024-46903: A vulnerability in Trend Micro Deep Discovery Inspector (DDI) versions 52024-10-22
GHSA
GHSA-g9f9-gp4p-jc4g: A vulnerability in Trend Micro Deep Discovery Inspector (DDI) versions 52024-10-22
CVE-2024-46903 (MEDIUM CVSS 6.5) | A vulnerability in Trend Micro Deep | cvebase.io