Severity
Medium
Analysis Summary
CVE-2024-46903 CVSS:6.5
Trend Micro Deep Discovery Inspector is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database.
CVE-2024-46902 CVSS:4.9
Trend Micro Deep Discovery Inspector is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database.
Impact
- Data Manipulation
Indicators of Compromise
CVE
- CVE-2024-46903
- CVE-2024-46902
Affected Vendors
Trend Micro
Affected Products
- Trend Micro Deep Discovery Inspector
Remediation
Refer to Trend Micro Security Advisory for patch, upgrade or suggested workaround information.