Trend Micro · Trend Micro Deep Discovery Inspector · CVE-2018-15365
**Name of the Vulnerable Software and Affected Versions**
Trend Micro Deep Discovery Inspector versions 3.85 and below
**Description**
A Reflected Cross-Site Scripting (XSS) issue could allow an attacker to bypass CSRF protection and conduct an attack on vulnerable installations. The attacker must be an authenticated user to exploit this issue.
**Recommendations**
For versions 3.85 and below, update to a version above 3.85 to resolve the issue. As a temporary workaround, consider restricting access to authenticated users to minimize the risk of exploitation.