CVE Vulnerabilities

CVE-2016-6268

Published: Jan 30, 2017 | Modified: Sep 09, 2021
CVSS 3.x
7.8
HIGH
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106, and 3.0 before build 1330 allows local webserv users to execute arbitrary code with root privileges via a Trojan horse .war file in the Solr webapps directory.

Affected Software

Name Vendor Start Version End Version
Smart_protection_server Trendmicro 3.0 3.0
Smart_protection_server Trendmicro 2.5 2.5
Smart_protection_server Trendmicro 2.6 2.6

References