CVE-2024-48904 | Trend Micro Cloud Edge REST API command injection (ZDI-24-1418)

Posted by Angelo Barbosa | Oct 18, 2024 | CVE

A vulnerability classified as very critical was found in Trend Micro Cloud Edge. Affected by this vulnerability is an unknown functionality of the component REST API. The manipulation leads to command injection.

This vulnerability is known as CVE-2024-48904. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-48904 | Trend Micro Cloud Edge REST API command injection (ZDI-24-1418)

Related Posts

CVE-2024-8476 | Easy PayPal Events Plugin up to 1.2.1 on WordPress Post cross-site request forgery

CVE-2023-33110 | Qualcomm 4 Gen 1 Mobile Platform PCM Host Voice Audio Driver race condition

CVE-2024-20450 | Cisco Small Business IP Phones up to 7.6.2SR7 Web-based Management Interface buffer overflow (cisco-sa-spa-http-vulns-RJZmX2Xz)

CVE-2024-37759 | DataGear up to 5.0.0 SpEL Expression injection (Issue 32)