CVE-2015-2872 is a vulnerability in TrendMicro Deep Discovery Inspector
Published on August 23, 2015

Multiple cross-site scripting (XSS) vulnerabilities in Trend Micro Deep Discovery Inspector (DDI) on Deep Discovery Threat appliances with software before 3.5.1477, 3.6.x before 3.6.1217, 3.7.x before 3.7.1248, 3.8.x before 3.8.1263, and other versions allow remote attackers to inject arbitrary web script or HTML via (1) crafted input to index.php that is processed by certain Internet Explorer 7 configurations or (2) crafted input to the widget feature.

NVD

Products Associated with CVE-2015-2872

Want to know whenever a new CVE is published for TrendMicro Deep Discovery Inspector? stack.watch will email you.

TrendMicro Deep Discovery Inspector

Exploit Probability

EPSS

2.58%

Percentile

85.36%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2015-2872 is a vulnerability in TrendMicro Deep Discovery InspectorPublished on August 23, 2015

Products Associated with CVE-2015-2872

Exploit Probability

CVE-2015-2872 is a vulnerability in TrendMicro Deep Discovery Inspector
Published on August 23, 2015