CVE-2017-14078

SQL Injection vulnerabilities in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to execute arbitrary code on vulnerable installations.

CVSS v3.0 9.8 CRITICAL
CVSS v2.0 10.0 HIGH

9.8^/10

CVSS v3.0 : CRITICAL

V3 Legend

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
https://success.trendmicro.com/solution/1118224	Mitigation Patch Vendor Advisory
http://www.zerodayinitiative.com/advisories/ZDI-17-810	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-809	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-808	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-806	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-805	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-804	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-803	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-802	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-801	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-800	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-799	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-798	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-797	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-796	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-795	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-794	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-793	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-792	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-791	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-788	VDB Entry Third Party Advisory
http://www.zerodayinitiative.com/advisories/ZDI-17-787	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-786	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-784	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-783	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-782	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-781	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-780	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-779	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-778	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-777	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-776	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-775	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-773	VDB Entry Third Party Advisory
http://www.zerodayinitiative.com/advisories/ZDI-17-772	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-771	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-770	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-769	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-768	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-766	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-765	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-764	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-763	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-762	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-761	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-760	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-759	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-758	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-757	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-756	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-755	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-754	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-753	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-751	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-750	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-749	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-748	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-747	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-746	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-745	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-744	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-743	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-742	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-741	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-740	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-739	Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/100966	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

cpe:2.3:a:trendmicro:mobile_security:9.7:*:*:*:enterprise:*:*:*

Information

Published : 2017-09-22 09:29

Updated : 2017-09-29 15:45

NVD link : CVE-2017-14078

Mitre link : CVE-2017-14078

JSON object : View

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Products Affected

trendmicro

mobile_security

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://success.trendmicro.com/solution/1118224", "name": "https://success.trendmicro.com/solution/1118224", "tags": ["Mitigation", "Patch", "Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-810", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-810", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-809", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-809", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-808", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-808", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-806", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-806", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-805", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-805", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-804", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-804", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-803", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-803", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-802", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-802", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-801", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-801", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-800", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-800", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-799", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-799", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-798", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-798", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-797", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-797", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-796", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-796", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-795", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-795", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-794", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-794", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-793", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-793", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-792", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-792", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-791", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-791", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-788", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-788", "tags": ["VDB Entry", "Third Party Advisory"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-787", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-787", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-786", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-786", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-784", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-784", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-783", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-783", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-782", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-782", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-781", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-781", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-780", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-780", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-779", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-779", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-778", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-778", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-777", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-777", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-776", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-776", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-775", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-775", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-773", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-773", "tags": ["VDB Entry", "Third Party Advisory"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-772", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-772", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-771", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-771", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-770", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-770", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-769", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-769", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-768", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-768", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-766", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-766", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-765", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-765", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-764", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-764", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-763", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-763", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-762", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-762", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-761", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-761", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-760", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-760", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-759", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-759", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-758", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-758", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-757", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-757", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-756", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-756", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-755", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-755", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-754", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-754", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-753", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-753", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-751", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-751", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-750", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-750", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-749", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-749", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-748", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-748", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-747", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-747", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-746", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-746", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-745", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-745", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-744", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-744", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-743", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-743", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-742", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-742", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-741", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-741", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-740", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-740", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.zerodayinitiative.com/advisories/ZDI-17-739", "name": "http://www.zerodayinitiative.com/advisories/ZDI-17-739", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "http://www.securityfocus.com/bid/100966", "name": "100966", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "BID"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "SQL Injection vulnerabilities in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to execute arbitrary code on vulnerable installations."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-89"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2017-14078", "ASSIGNER": "security@trendmicro.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}}, "publishedDate": "2017-09-22T16:29Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:trendmicro:mobile_security:9.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-09-29T22:45Z"}

9.8 /10