CVE-2025-31286
CVE-2025-31286
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 4.6EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
02 Apr 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An HTML injection vulnerability previously discovered in Trend Vision One could have allowed a malicious user to execute arbitrary code.
Please note: this issue has already been addressed on the backend service and is no longer considered an active vulnerability.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Affected products
Trend Micro, Inc. · Trend Vision OneWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →