What is CVE-2017-11394?

CVE-2017-11394 is a critical-severity vulnerability in Trend Micro Officescan, classified under Improper Input Validation. CVSS score: 9.8/10. Published 2017-08-03.

How severe is CVE-2017-11394?

Critical severity. CVSS v3 base score is 9.8 out of 10.

Is CVE-2017-11394 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Improper input validation in Trend Micro Officescan

CVE-2017-11394

Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote attackers to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the T parameter within Proxy.php. F…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.807 (99.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Trend Micro Officescan — versions 11, XG (12)
Trendmicro Officescan — versions 11.0, 12.0

Weakness classification (CWE)

CWE-20 — Improper Input Validation

Public proof-of-concept exploits

rapid7/metasploit-framework

References

security@trendmicro.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
security@trendmicro.com (Patch, x_refsource_MISC, Mitigation, Vendor Advisory)
security@trendmicro.com (exploit, x_refsource_EXPLOIT-DB)
security@trendmicro.com (VDB Entry, Third Party Advisory, x_refsource_MISC)

Frequently asked questions

What is CVE-2017-11394?: CVE-2017-11394 is a critical-severity vulnerability in Trend Micro Officescan, classified under Improper Input Validation. CVSS score: 9.8/10. Published 2017-08-03.
How severe is CVE-2017-11394?: Critical severity. CVSS v3 base score is 9.8 out of 10.
Is CVE-2017-11394 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.