var-201805-0272
Vulnerability from variot
A vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a remote attacker to execute arbitrary SQL statements on vulnerable installations due to a flaw in the formRegistration2 class. Authentication is required to exploit this vulnerability. A crafted Client field in ppreg files can trigger execution of SQL queries composed from a user-supplied string. An attacker can leverage this vulnerability to execute code under the context of root. Multiple SQL-injection vulnerabilities 2. A command-injection vulnerability 3. An insecure authentication weakness Exploiting these issues could allow an attacker to access or modify data, or exploit latent vulnerabilities in the underlying database, execute arbitrary command, bypass authentication mechanism, execute arbitrary code and obtain sensitive information. This may aid in further attacks. Email Encryption Gateway 5.5 Build 1111 and prior are vulnerable. There is an SQL injection vulnerability in the formRegistration2 class in Trend Micro TMEEG version 5.5
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "email encryption gateway",
"scope": "lte",
"trust": 1.0,
"vendor": "trendmicro",
"version": "5.5"
},
{
"_id": null,
"model": "email encryption gateway",
"scope": "eq",
"trust": 0.8,
"vendor": "trend micro",
"version": "5.5"
},
{
"_id": null,
"model": "encryption for email gateway",
"scope": null,
"trust": 0.7,
"vendor": "trend micro",
"version": null
},
{
"_id": null,
"model": "email encryption gateway",
"scope": "eq",
"trust": 0.6,
"vendor": "trendmicro",
"version": "5.5"
},
{
"_id": null,
"model": "email encryption gateway build",
"scope": "eq",
"trust": 0.3,
"vendor": "trend micro",
"version": "5.51111"
},
{
"_id": null,
"model": "email encryption gateway build",
"scope": "eq",
"trust": 0.3,
"vendor": "trend micro",
"version": "5.51107"
},
{
"_id": null,
"model": "email encryption gateway build",
"scope": "eq",
"trust": 0.3,
"vendor": "trend micro",
"version": "5.51073"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-18-415"
},
{
"db": "BID",
"id": "104314"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-005207"
},
{
"db": "CNNVD",
"id": "CNNVD-201805-779"
},
{
"db": "NVD",
"id": "CVE-2018-10351"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:trendmicro:email_encryption_gateway",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-005207"
}
]
},
"credits": {
"_id": null,
"data": "Steven Seeley (mr_me) of Source Incite",
"sources": [
{
"db": "ZDI",
"id": "ZDI-18-415"
},
{
"db": "BID",
"id": "104314"
}
],
"trust": 1.0
},
"cve": "CVE-2018-10351",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 9.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 8.0,
"id": "CVE-2018-10351",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 2.5,
"vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 9.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 8.0,
"id": "VHN-120102",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:S/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 2.8,
"id": "CVE-2018-10351",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2018-10351",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2018-10351",
"trust": 0.8,
"value": "High"
},
{
"author": "ZDI",
"id": "CVE-2018-10351",
"trust": 0.7,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201805-779",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "VULHUB",
"id": "VHN-120102",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-18-415"
},
{
"db": "VULHUB",
"id": "VHN-120102"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-005207"
},
{
"db": "CNNVD",
"id": "CNNVD-201805-779"
},
{
"db": "NVD",
"id": "CVE-2018-10351"
}
]
},
"description": {
"_id": null,
"data": "A vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a remote attacker to execute arbitrary SQL statements on vulnerable installations due to a flaw in the formRegistration2 class. Authentication is required to exploit this vulnerability. A crafted Client field in ppreg files can trigger execution of SQL queries composed from a user-supplied string. An attacker can leverage this vulnerability to execute code under the context of root. Multiple SQL-injection vulnerabilities\n2. A command-injection vulnerability\n3. An insecure authentication weakness\nExploiting these issues could allow an attacker to access or modify data, or exploit latent vulnerabilities in the underlying database, execute arbitrary command, bypass authentication mechanism, execute arbitrary code and obtain sensitive information. This may aid in further attacks. \nEmail Encryption Gateway 5.5 Build 1111 and prior are vulnerable. There is an SQL injection vulnerability in the formRegistration2 class in Trend Micro TMEEG version 5.5",
"sources": [
{
"db": "NVD",
"id": "CVE-2018-10351"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-005207"
},
{
"db": "ZDI",
"id": "ZDI-18-415"
},
{
"db": "BID",
"id": "104314"
},
{
"db": "VULHUB",
"id": "VHN-120102"
}
],
"trust": 2.61
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2018-10351",
"trust": 3.5
},
{
"db": "ZDI",
"id": "ZDI-18-415",
"trust": 2.7
},
{
"db": "JVNDB",
"id": "JVNDB-2018-005207",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-5551",
"trust": 0.7
},
{
"db": "NSFOCUS",
"id": "39853",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-201805-779",
"trust": 0.6
},
{
"db": "ZDI",
"id": "ZDI-18-418",
"trust": 0.3
},
{
"db": "ZDI",
"id": "ZDI-18-411",
"trust": 0.3
},
{
"db": "ZDI",
"id": "ZDI-18-419",
"trust": 0.3
},
{
"db": "ZDI",
"id": "ZDI-18-416",
"trust": 0.3
},
{
"db": "BID",
"id": "104314",
"trust": 0.3
},
{
"db": "VULHUB",
"id": "VHN-120102",
"trust": 0.1
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-18-415"
},
{
"db": "VULHUB",
"id": "VHN-120102"
},
{
"db": "BID",
"id": "104314"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-005207"
},
{
"db": "CNNVD",
"id": "CNNVD-201805-779"
},
{
"db": "NVD",
"id": "CVE-2018-10351"
}
]
},
"id": "VAR-201805-0272",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-120102"
}
],
"trust": 0.01
},
"last_update_date": "2024-11-23T22:17:30.803000Z",
"patch": {
"_id": null,
"data": [
{
"title": "1119349",
"trust": 1.5,
"url": "https://success.trendmicro.com/solution/1119349"
},
{
"title": "Trend Micro Email Encryption Gateway SQL Repair measures for injecting vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=83664"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-18-415"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-005207"
},
{
"db": "CNNVD",
"id": "CNNVD-201805-779"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-89",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-120102"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-005207"
},
{
"db": "NVD",
"id": "CVE-2018-10351"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 2.4,
"url": "https://success.trendmicro.com/solution/1119349"
},
{
"trust": 2.0,
"url": "https://www.zerodayinitiative.com/advisories/zdi-18-415/"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-10351"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-10351"
},
{
"trust": 0.6,
"url": "http://www.nsfocus.net/vulndb/39853"
},
{
"trust": 0.3,
"url": "http://www.trend.com"
},
{
"trust": 0.3,
"url": "trend micro encryption for email gateway dbcrypto authentication weakness vulnerability"
},
{
"trust": 0.3,
"url": "https://www.zerodayinitiative.com/advisories/zdi-18-411/"
},
{
"trust": 0.3,
"url": "https://www.zerodayinitiative.com/advisories/zdi-18-419/"
},
{
"trust": 0.3,
"url": "https://www.zerodayinitiative.com/advisories/zdi-18-418/"
},
{
"trust": 0.3,
"url": "https://www.zerodayinitiative.com/advisories/zdi-18-416/"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-18-415"
},
{
"db": "VULHUB",
"id": "VHN-120102"
},
{
"db": "BID",
"id": "104314"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-005207"
},
{
"db": "CNNVD",
"id": "CNNVD-201805-779"
},
{
"db": "NVD",
"id": "CVE-2018-10351"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "ZDI",
"id": "ZDI-18-415",
"ident": null
},
{
"db": "VULHUB",
"id": "VHN-120102",
"ident": null
},
{
"db": "BID",
"id": "104314",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2018-005207",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201805-779",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2018-10351",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2018-05-04T00:00:00",
"db": "ZDI",
"id": "ZDI-18-415",
"ident": null
},
{
"date": "2018-05-23T00:00:00",
"db": "VULHUB",
"id": "VHN-120102",
"ident": null
},
{
"date": "2018-05-04T00:00:00",
"db": "BID",
"id": "104314",
"ident": null
},
{
"date": "2018-07-10T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-005207",
"ident": null
},
{
"date": "2018-05-24T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201805-779",
"ident": null
},
{
"date": "2018-05-23T16:29:00.210000",
"db": "NVD",
"id": "CVE-2018-10351",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2018-05-04T00:00:00",
"db": "ZDI",
"id": "ZDI-18-415",
"ident": null
},
{
"date": "2018-06-22T00:00:00",
"db": "VULHUB",
"id": "VHN-120102",
"ident": null
},
{
"date": "2018-05-04T00:00:00",
"db": "BID",
"id": "104314",
"ident": null
},
{
"date": "2018-07-10T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-005207",
"ident": null
},
{
"date": "2018-05-24T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201805-779",
"ident": null
},
{
"date": "2024-11-21T03:41:14.613000",
"db": "NVD",
"id": "CVE-2018-10351",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201805-779"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "Trend Micro Email Encryption Gateway In SQL Injection vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-005207"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "SQL injection",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201805-779"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.