High severity8.8NVD Advisory· Published Dec 16, 2017· Updated Jun 17, 2026
CVE-2017-14092
CVE-2017-14092
Description
The absence of Anti-CSRF tokens in Trend Micro ScanMail for Exchange 12.0 web interface forms could allow an attacker to submit authenticated requests when an authenticated user browses an attacker-controlled domain.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:trendmicro:scanmail:12.0:*:*:*:*:microsoft_exchange:*:*
- Range: 12.0
Patches
Vulnerability mechanics
References
2- success.trendmicro.com/solution/1118486nvdPatchVendor Advisory
- www.coresecurity.com/advisories/trend-micro-scanmail-microsoft-exchange-multiple-vulnerabilitiesnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.