Medium severity6.1NVD Advisory· Published May 26, 2017· Updated Jun 17, 2026
CVE-2017-9032
CVE-2017-9032
Description
Multiple cross-site scripting (XSS) vulnerabilities in Trend Micro ServerProtect for Linux 3.0 before CP 1531 allow remote attackers to inject arbitrary web script or HTML via the (1) T1 or (2) tmLastConfigFileModifiedDate parameter to log_management.cgi.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- cpe:2.3:a:trendmicro:serverprotect:3.0:*:*:*:*:linux:*:*
Patches
Vulnerability mechanics
References
5- success.trendmicro.com/solution/1117411nvdPatchVendor Advisory
- packetstormsecurity.com/files/142645/Trend-Micro-ServerProtect-Disclosure-CSRF-XSS.htmlnvdExploitThird Party AdvisoryVDB Entry
- seclists.org/fulldisclosure/2017/May/91nvdExploitMailing ListThird Party Advisory
- www.coresecurity.com/advisories/trend-micro-serverprotect-multiple-vulnerabilitiesnvdExploitTechnical DescriptionThird Party Advisory
- www.securitytracker.com/id/1038548nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.