NVD

CVE-2017-14078 Detail

Modified

This vulnerability has been modified since it was last analyzed by the NVD. It is awaiting reanalysis which may result in further changes to the information provided.

Description

SQL Injection vulnerabilities in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to execute arbitrary code on vulnerable installations.

Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.

CVSS 4.0 Severity and Vector Strings:

NIST: NVD

N/A

NVD assessment not yet provided.

CVSS 3.x Severity and Vector Strings:

NIST: NVD

Base Score: 9.8 CRITICAL

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS 2.0 Severity and Vector Strings:

National Institute of Standards and Technology

NIST: NVD

Base Score: 10.0 HIGH

Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C)

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Hyperlink	Resource
http://www.securityfocus.com/bid/100966	Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/100966	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-739	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-739	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-740	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-740	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-741	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-741	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-742	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-742	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-743	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-743	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-744	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-744	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-745	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-745	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-746	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-746	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-747	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-747	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-748	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-748	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-749	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-749	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-750	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-750	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-751	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-751	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-753	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-753	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-754	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-754	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-755	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-755	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-756	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-756	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-757	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-757	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-758	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-758	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-759	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-759	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-760	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-760	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-761	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-761	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-762	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-762	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-763	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-763	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-764	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-764	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-765	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-765	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-766	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-766	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-768	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-768	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-769	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-769	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-770	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-770	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-771	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-771	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-772	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-772	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-773	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-773	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-775	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-775	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-776	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-776	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-777	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-777	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-778	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-778	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-779	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-779	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-780	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-780	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-781	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-781	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-782	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-782	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-783	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-783	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-784	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-784	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-786	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-786	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-787	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-787	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-788	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-788	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-791	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-791	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-792	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-792	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-793	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-793	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-794	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-794	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-795	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-795	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-796	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-796	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-797	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-797	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-798	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-798	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-799	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-799	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-800	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-800	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-801	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-801	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-802	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-802	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-803	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-803	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-804	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-804	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-805	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-805	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-806	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-806	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-808	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-808	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-809	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-809	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-810	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-810	Third Party Advisory VDB Entry
https://success.trendmicro.com/solution/1118224	Mitigation Patch Vendor Advisory
https://success.trendmicro.com/solution/1118224	Mitigation Patch Vendor Advisory

Weakness Enumeration

CWE-ID	CWE Name	Source
CWE-89	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	NIST

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

4 change records found show changes

CVE Modified by CVE 11/20/2024 10:12:05 PM

Action	Type	New Value
Added	Reference	http://www.securityfocus.com/bid/100966
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-739
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-740
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-741
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-742
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-743
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-744
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-745
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-746
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-747
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-748
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-749
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-750
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-751
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-753
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-754
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-755
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-756
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-757
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-758
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-759
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-760
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-761
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-762
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-763
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-764
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-765
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-766
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-768
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-769
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-770
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-771
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-772
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-773
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-775
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-776
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-777
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-778
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-779
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-780
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-781
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-782
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-783
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-784
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-786
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-787
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-788
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-791
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-792
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-793
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-794
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-795
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-796
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-797
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-798
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-799
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-800
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-801
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-802
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-803
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-804
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-805
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-806
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-808
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-809
Added	Reference	http://www.zerodayinitiative.com/advisories/ZDI-17-810
Added	Reference	https://success.trendmicro.com/solution/1118224

Initial Analysis by NIST 9/29/2017 6:45:21 PM

Quick Info

CVE Dictionary Entry:
CVE-2017-14078
NVD Published Date:
09/22/2017
NVD Last Modified:
11/20/2024
Source:
Trend Micro, Inc.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

CVE-2017-14078 Detail

Description

Metrics

References to Advisories, Solutions, and Tools

Weakness Enumeration

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Change History

CVE Modified by CVE 11/20/2024 10:12:05 PM

CVE Modified by Trend Micro, Inc. 5/14/2024 12:21:40 AM

Initial Analysis by NIST 9/29/2017 6:45:21 PM

CVE Modified by Trend Micro, Inc. 9/26/2017 9:29:07 PM

Quick Info