Security Advisory

CVE-2020-28581

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-11-18 18:45:41

Last updated 2024-08-04 16:40:59

Assigner trendmicro

State PUBLISHED

Description

A command injection vulnerability in ModifyVLANItem of Trend Micro InterScan Web Security Virtual Appliance 6.5 SP2 could allow an authenticated, remote attacker to send specially crafted HTTP messages and execute arbitrary OS commands with elevated privileges.

← Browse all CVEs View on cve.org ↗