{ "CVE_data_meta" : { "ASSIGNER" : "security@trendmicro.com", "ID" : "CVE-2018-3606", "STATE" : "PUBLIC" }, "affects" : { "vendor" : { "vendor_data" : [ { "product" : { "product_data" : [ { "product_name" : "Trend Micro Control Manager", "version" : { "version_data" : [ { "version_value" : "6.0" } ] } } ] }, "vendor_name" : "Trend Micro" } ] } }, "data_format" : "MITRE", "data_type" : "CVE", "data_version" : "4.0", "description" : { "description_data" : [ { "lang" : "eng", "value" : "XXXStatusXXX, XXXSummary, TemplateXXX and XXXCompliance method SQL injection remote code execution (RCE) vulnerabilities in Trend Micro Control Manager 6.0 could allow a remote attacker to execute arbitrary code on vulnerable installations." } ] }, "problemtype" : { "problemtype_data" : [ { "description" : [ { "lang" : "eng", "value" : "SQL Injection" } ] } ] }, "references" : { "reference_data" : [ { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-083/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-083/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-085/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-085/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-086/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-086/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-089/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-089/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-091/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-091/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-092/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-092/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-093/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-093/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-099/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-099/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-100/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-100/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-101/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-101/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-103/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-103/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-104/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-104/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-105/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-105/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-106/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-106/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-107/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-107/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-108/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-108/" }, { "name" : "https://www.zerodayinitiative.com/advisories/ZDI-18-110/", "refsource" : "MISC", "url" : "https://www.zerodayinitiative.com/advisories/ZDI-18-110/" }, { "name" : "https://success.trendmicro.com/solution/1119158", "refsource" : "CONFIRM", "url" : "https://success.trendmicro.com/solution/1119158" } ] } }