Description
Cross-site scripting (XSS) vulnerability in Trend Micro Internet Security 8 and 10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References (4)
Core 4
Core References
Vendor Advisory third-party-advisory
x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2016-000088
Vendor Advisory x_refsource_confirm
https://esupport.trendmicro.com/support/vb/solution/ja-jp/1113880.aspx
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1036137
Vendor Advisory third-party-advisory
x_refsource_jvn
http://jvn.jp/en/jp/JVN48789425/index.html
Scores
CVSS v3
6.1
EPSS
0.0037
EPSS Percentile
59.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-79
Status
published
Products (2)
trendmicro/internet_security
8.0
trendmicro/internet_security
10.0
Published
Jun 19, 2016
Tracked Since
Feb 18, 2026