Trendmicro Deep Discovery Director vulnerabilities
3 known vulnerabilities affecting trendmicro/deep_discovery_director.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1
Vulnerabilities
Page 1 of 1
CVE-2017-11380CRITICALCVSS 9.8v1.12017-08-01
CVE-2017-11380 [CRITICAL] CWE-798 CVE-2017-11380: Backup archives were found to be encrypted with a static password across different installations, wh
Backup archives were found to be encrypted with a static password across different installations, which suggest the same password may be used in all virtual appliance instances of Trend Micro Deep Discovery Director 1.1.
nvd
CVE-2017-11381CRITICALCVSS 9.8v1.12017-08-01
CVE-2017-11381 [CRITICAL] CWE-78 CVE-2017-11381: A command injection vulnerability exists in Trend Micro Deep Discovery Director 1.1 that allows an a
A command injection vulnerability exists in Trend Micro Deep Discovery Director 1.1 that allows an attacker to restore accounts that can access the pre-configuration console.
nvd
CVE-2017-11379HIGHCVSS 7.5v1.12017-08-01
CVE-2017-11379 [HIGH] CWE-345 CVE-2017-11379: Configuration and database backup archives are not signed or validated in Trend Micro Deep Discovery
Configuration and database backup archives are not signed or validated in Trend Micro Deep Discovery Director 1.1.
nvd