Trendmicro Email Encryption Gateway — known CVE vulnerabilities
Every CVE whose affected-product data names Trendmicro Email Encryption Gateway, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (19)
CVE-2016-4351 — CVSS 9.8 (critical): SQL injection vulnerability in the authentication functionality in Trend Micro Email Encryption Gateway (TMEEG) 5.5 before build 1107…
CVE-2018-6229 — CVSS 9.8 (critical): A SQL injection vulnerability in an Trend Micro Email Encryption Gateway 5.5 edit policy script could allow an attacker to execute SQL…
CVE-2018-6228 — CVSS 9.8 (critical): A SQL injection vulnerability in a Trend Micro Email Encryption Gateway 5.5 policy script could allow an attacker to execute SQL commands…
CVE-2018-6220 — CVSS 9.8 (critical): An arbitrary file write vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to inject arbitrary data, which…
CVE-2018-6223 — CVSS 9.8 (critical): A missing authentication for appliance registration vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to…
CVE-2018-6224 — CVSS 8.8 (high): A lack of cross-site request forgery (CSRF) protection vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to…
CVE-2018-10351 — CVSS 8.8 (high): A vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a remote attacker to execute arbitrary SQL statements on vulnerable…
CVE-2018-10352 — CVSS 8.8 (high): A vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a remote attacker to execute arbitrary SQL statements on vulnerable…
CVE-2018-10356 — CVSS 8.8 (high): A SQL injection remote code execution vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to execute…
CVE-2018-10354 — CVSS 8.8 (high): A command injection remote command execution vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a remote attacker to…
CVE-2018-6221 — CVSS 8.1 (high): An unvalidated software update vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a man-in-the-middle attacker to tamper…
CVE-2018-6222 — CVSS 7.8 (high): Arbitrary logs location in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to change location of log files and be…
CVE-2018-10355 — CVSS 7.0 (high): An authentication weakness vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to recover user passwords on…
CVE-2018-6230 — CVSS 6.8 (medium): A SQL injection vulnerability in an Trend Micro Email Encryption Gateway 5.5 search configuration script could allow an attacker to execute…
CVE-2018-10353 — CVSS 6.5 (medium): A SQL injection information disclosure vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a remote attacker to disclose…
CVE-2018-6219 — CVSS 6.5 (medium): An Insecure Update via HTTP vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to eavesdrop and tamper with…
CVE-2018-6226 — CVSS 5.4 (medium): Reflected cross-site scripting (XSS) vulnerabilities in two Trend Micro Email Encryption Gateway 5.5 configuration files could allow an…
CVE-2018-6227 — CVSS 5.4 (medium): A stored cross-site scripting (XSS) vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to inject client-side…
CVE-2018-6225 — CVSS 4.3 (medium): An XML external entity injection (XXE) vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an authenticated user to…