{ "CVE_data_meta": { "ASSIGNER": "security@trendmicro.com", "ID": "CVE-2018-3606", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Trend Micro Control Manager", "version": { "version_data": [ { "version_value": "6.0" } ] } } ] }, "vendor_name": "Trend Micro" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "XXXStatusXXX, XXXSummary, TemplateXXX and XXXCompliance method SQL injection remote code execution (RCE) vulnerabilities in Trend Micro Control Manager 6.0 could allow a remote attacker to execute arbitrary code on vulnerable installations." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "SQL Injection" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-092/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-092/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-085/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-085/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-110/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-110/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-086/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-086/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-091/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-091/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-100/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-100/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-093/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-093/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-103/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-103/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-083/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-083/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-108/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-108/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-106/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-106/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-099/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-099/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-107/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-107/" }, { "name": "https://success.trendmicro.com/solution/1119158", "refsource": "CONFIRM", "url": "https://success.trendmicro.com/solution/1119158" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-105/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-105/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-089/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-089/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-101/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-101/" }, { "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-104/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-104/" } ] } }