cvedb.io
CVE-2018-15365
MEDIUM · CVSS 5.4
EPSS exploitation probability: 0%
Published 2018-09-28T17:29:00.297 · Last modified 2026-06-17T01:42:19.477

Summary

A Reflected Cross-Site Scripting (XSS) vulnerability in Trend Micro Deep Discovery Inspector 3.85 and below could allow an attacker to bypass CSRF protection and conduct an attack on vulnerable installations. An attacker must be an authenticated user in order to exploit the vulnerability.

Affected products

trendmicro — deep_discovery_inspector

Does this affect you?

Add your gear to cvedb and we'll alert you only when trendmicro ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.