Critical severity9.8NVD Advisory· Published Aug 2, 2017· Updated Jun 17, 2026
CVE-2017-11386
CVE-2017-11386
Description
SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when executing opcode 0x4707 due to lack of proper user input validation in cmdHandlerNewReportScheduler.dll. Formerly ZDI-CAN-4549.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:trendmicro:control_manager:6.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:trendmicro:control_manager:6.0:*:*:*:*:*:*:*
- (no CPE)range: 6.0
Patches
Vulnerability mechanics
References
4- success.trendmicro.com/solution/1117722nvdPatchVendor Advisory
- www.zerodayinitiative.com/advisories/ZDI-17-496nvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/100078nvd
- www.securitytracker.com/id/1039049nvd
News mentions
0No linked articles in our index yet.