What is the vulnerability severity of CVE-2024-46903?

CVE-2024-46903 is rated as a critical vulnerability due to the potential for sensitive information disclosure.

How can I remediate CVE-2024-46903?

To fix CVE-2024-46903, update your Trend Micro Deep Discovery Inspector to the latest patched version.

Which versions of Trend Micro Deep Discovery Inspector are affected by CVE-2024-46903?

CVE-2024-46903 affects Trend Micro Deep Discovery Inspector versions 5.8 and above up to 6.7-1086.

What type of attacks can CVE-2024-46903 facilitate?

CVE-2024-46903 can facilitate attacks that lead to the disclosure of sensitive information from affected installations.

Vulnerability/
CVE-2024-46903

medium

6.5

CWE

22/10/2024

1/11/2024

30/1/2025

CVE-2024-46903: Trend Micro Deep Discovery Inspector SQL Injection Information Disclosure Vulnerability

Q: Can an attacker exploit CVE-2024-46903 without prior access?

No, an attacker must first obtain the ability to execute low-privileged code on the target system to exploit CVE-2024-46903.

First published: Tue Oct 22 2024(Updated: )

A vulnerability in Trend Micro Deep Discovery Inspector (DDI) versions 5.8 and above could allow an attacker to disclose sensitive information affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Credit: security@trendmicro.com

Affected Software	Affected Version	How to fix
trendmicro deep discovery inspector	>=5.8<6.6
trendmicro deep discovery inspector	=6.6-1078
trendmicro deep discovery inspector	=6.6-1080
trendmicro deep discovery inspector	=6.7-1077
trendmicro deep discovery inspector	=6.7-1086
Trend Micro Deep Discovery Email Inspector

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability severity of CVE-2024-46903?
CVE-2024-46903 is rated as a critical vulnerability due to the potential for sensitive information disclosure.
How can I remediate CVE-2024-46903?
To fix CVE-2024-46903, update your Trend Micro Deep Discovery Inspector to the latest patched version.
Which versions of Trend Micro Deep Discovery Inspector are affected by CVE-2024-46903?
CVE-2024-46903 affects Trend Micro Deep Discovery Inspector versions 5.8 and above up to 6.7-1086.
Can an attacker exploit CVE-2024-46903 without prior access?
No, an attacker must first obtain the ability to execute low-privileged code on the target system to exploit CVE-2024-46903.
What type of attacks can CVE-2024-46903 facilitate?
CVE-2024-46903 can facilitate attacks that lead to the disclosure of sensitive information from affected installations.

agent/references
agent/type
agent/first-publish-date
agent/title
agent/description
agent/author
agent/severity
agent/event
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/trending
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/zdi-advisory
source/ZDI
alias/ZDI-24-1228
alias/ZDI-CAN-24585
alias/CVE-2024-46903
vendor/trendmicro
canonical/trendmicro deep discovery inspector
version/trendmicro deep discovery inspector/5.8
version/trendmicro deep discovery inspector/6.6-1078
version/trendmicro deep discovery inspector/6.6-1080
version/trendmicro deep discovery inspector/6.7-1077
version/trendmicro deep discovery inspector/6.7-1086
vendor/trend micro
canonical/trend micro deep discovery email inspector

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.