High severity7.4NVD Advisory· Published May 26, 2017· Updated May 13, 2026

CVE-2017-9035

Description

Trend Micro ServerProtect for Linux 3.0 before CP 1531 allows attackers to eavesdrop and tamper with updates by leveraging unencrypted communications with update servers.

Affected products

Trend Micro/Serverprotect
cpe:2.3:a:trendmicro:serverprotect:3.0:*:*:*:*:linux:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

success.trendmicro.com/solution/1117411nvdPatchVendor Advisory
packetstormsecurity.com/files/142645/Trend-Micro-ServerProtect-Disclosure-CSRF-XSS.htmlnvdExploitThird Party AdvisoryVDB Entry
seclists.org/fulldisclosure/2017/May/91nvdExploitMailing ListThird Party Advisory
www.coresecurity.com/advisories/trend-micro-serverprotect-multiple-vulnerabilitiesnvdExploitTechnical DescriptionThird Party Advisory
www.securitytracker.com/id/1038548nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.481
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000