CVE-2024-53647
HIGH WAF: Medium
CVSS 8.2
Published: 2024-12-31
CWE-400
Trend Micro ID Security, version 3.0 and below contains a vulnerability that could allow an attacker to send an unlimited number of email verification requests without any restriction, potentially leading to abuse or denial of service.
WAF Coverage Analysis
Uncontrolled Resource Consumption
Medium WAF Coverage
OWASP: A05:2021 Security Misconfiguration
912xxx - DOS Protection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| trendmicro | id_security | up to 3.0 |
References
- helpcenter.trendmicro.com (Vendor Advisory)