{"cve":{"cve_id":"CVE-2011-1889","is_kev":true,"kev_date_added":"2022-03-03","kev_vendor_project":"Microsoft","kev_product":"Forefront Threat Management Gateway (TMG)","kev_vulnerability_name":"Microsoft Forefront TMG Remote Code Execution Vulnerability","kev_short_description":"A remote code execution vulnerability exists in the Forefront Threat Management Gateway (TMG) Firewall Client Winsock provider that could allow code execution in the security context of the client application.","kev_required_action":"Apply updates per vendor instructions.","kev_due_date":"2022-03-24","kev_known_ransomware":false,"kev_notes":"https://nvd.nist.gov/vuln/detail/CVE-2011-1889","kev_cwes":["CWE-119"],"epss_score":0.48368,"epss_percentile":0.9871,"epss_as_of":"2026-06-23","description":"The NSPLookupServiceNext function in the client in Microsoft Forefront Threat Management Gateway (TMG) 2010 allows remote attackers to execute arbitrary code via vectors involving unspecified requests, aka \"TMG Firewall Client Memory Corruption Vulnerability.\"","published_at":"2011-06-16T20:21:00Z","last_modified_at":"2026-06-16T23:30:18.967000Z","cvss_v3_score":9.8,"cvss_v3_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss_v3_severity":"CRITICAL","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":"active","ssvc_automatable":true,"ssvc_technical_impact":"total","cwes":["CWE-119"],"nvd_references":["http://www.securitytracker.com/id?1025637","https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-040","https://exchange.xforce.ibmcloud.com/vulnerabilities/67736","http://www.securityfocus.com/bid/48181","http://secunia.com/advisories/44857","https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12642"],"vuln_status":"Analyzed","trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:31.350578Z","updated_at":"2026-06-28T23:05:51.800540Z"},"effective_severity":"CRITICAL","badges":["kev"],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"N","value_label":"Network"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"microsoft","vendor_name":"Microsoft","product_slug":"forefront-threat-management-gateway","product_name":"forefront_threat_management_gateway","version_start":"2010","version_start_inclusive":true,"version_end":"2010","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:microsoft:forefront_threat_management_gateway:2010:*:*:*:*:*:*:*"}],"exploit_refs":[],"news":[],"references":[{"url":"http://www.securitytracker.com/id?1025637","source_type":"MISC","tags":[]},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-040","source_type":"MISC","tags":[]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/67736","source_type":"MISC","tags":[]},{"url":"http://www.securityfocus.com/bid/48181","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/44857","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12642","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2011-06-16T20:21:00Z","label":"CVE published","source":null},{"type":"cisa_reported","at":"2022-03-03T00:00:00Z","label":"Added to CISA KEV catalog","source":"kev"},{"type":"ssvc_changed","at":"2026-06-24T00:30:43.703670Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-24T00:30:43.703670Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-24T00:30:43.703670Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:30:43.703670Z","label":"CVSS score revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:30:43.703670Z","label":"CVSS score revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:30:43.703670Z","label":"CVSS score revised","source":"vulnrichment"}]}