CVE-2018-3609

CVE-2018-3609

Vendor Trend Micro
Product Trend Micro InterScan Messaging Security Virtual Appliance
Weakness CWE-522 · Insufficiently protected credentials
Published February 16, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability in the Trend Micro InterScan Messaging Security Virtual Appliance 9.0 and 9.1 management portal could allow an unauthenticated user to access sensitive information in a particular log file that could be used to bypass authentication on vulnerable installations.

Key dates

02Disclosure timeline

February 16, 2018 CVE published
August 5, 2024 Record updated