Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trendmicro vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2018-6233
A buffer overflow privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local malicious user to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x222060 by the tmnciesc.sys driver. An attacker mus...
Trendmicro Premium Security
Trendmicro Internet Security
Trendmicro Antivirus\\+
Trendmicro Maximum Security
5.5
CVSSv3
CVE-2018-6234
An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local malicious user to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver...
Trendmicro Premium Security
Trendmicro Internet Security
Trendmicro Antivirus\\+
Trendmicro Maximum Security
7.8
CVSSv3
CVE-2018-6235
An Out-of-Bounds write privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local malicious user to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacke...
Trendmicro Maximum Security
Trendmicro Antivirus\\+
Trendmicro Premium Security
Trendmicro Internet Security
7
CVSSv3
CVE-2018-6236
A Time-of-Check Time-of-Use privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local malicious user to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x222813 by the tmusa driver. An attacker ...
Trendmicro Maximum Security
Trendmicro Antivirus\\+
Trendmicro Premium Security
Trendmicro Internet Security
7.5
CVSSv3
CVE-2019-9489
A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (versions XG and 11.0), and Worry-Free Business Security (versions 10.0, 9.5 and 9.0) could allow an malicious user to modify arbitrary files on the affected product's management console.
Trendmicro Apex One
Trendmicro Worry-free Business Security 9.5
Trendmicro Officescan Xg
Trendmicro Apex One As A Service
Trendmicro Business Security 9.0
Trendmicro Worry-free Business Security 10.0
Trendmicro Officescan 11.0
7.2
CVSSv3
CVE-2021-25251
The Trend Micro Security 2020 and 2021 families of consumer products are vulnerable to a code injection vulnerability which could allow an malicious user to disable the program's password protection and disable protection. An attacker must already have administrator privileg...
Trendmicro Antivirus\\+ Security 2020 16.0
Trendmicro Antivirus\\+ Security 2021 17.0
Trendmicro Internet Security 2020 16.0
Trendmicro Internet Security 2021 17.0
Trendmicro Maximum Security 2020 16.0
Trendmicro Maximum Security 2021 17.0
Trendmicro Premium Security 2020 16.0
Trendmicro Premium Security 2021 17.0
1 Github repository
7.8
CVSSv3
CVE-2019-20357
A Persistent Arbitrary Code Execution vulnerability exists in the Trend Micro Security 2020 (v160 and 2019 (v15) consumer familiy of products which could potentially allow an attacker the ability to create a malicious program to escalate privileges and attain persistence on a vul...
Trendmicro Antivirus \\+ Security 2019 15.0
Trendmicro Antivirus \\+ Security 2020 16.0
Trendmicro Internet Security 2019 15.0
Trendmicro Internet Security 2020 16.0
Trendmicro Maximum Security 2019 15.0
Trendmicro Maximum Security 2020 16.0
Trendmicro Premium Security 2019 15.0
Trendmicro Premium Security 2020 16.0
7.8
CVSSv3
CVE-2020-15602
An untrusted search path remote code execution (RCE) vulnerability in the Trend Micro Secuity 2020 (v16.0.0.1146 and below) consumer family of products could allow an malicious user to run arbitrary code on a vulnerable system. As the Trend Micro installer tries to load DLL files...
Trendmicro Antivirus\\+ 2020
Trendmicro Internet Security 2020
Trendmicro Maximum Security 2020
Trendmicro Premium Security 2020
7.5
CVSSv3
CVE-2020-15603
An invalid memory read vulnerability in a Trend Micro Secuity 2020 (v16.0.0.1302 and below) consumer family of products' driver could allow an malicious user to manipulate the specific driver to do a system call operation with an invalid address, resulting in a potential sys...
Trendmicro Antivirus\\+ 2020
Trendmicro Internet Security 2020
Trendmicro Maximum Security 2020
Trendmicro Premium Security 2020
7.8
CVSSv3
CVE-2018-10513
A Deserialization of Untrusted Data Privilege Escalation vulnerability in Trend Micro Security 2018 (Consumer) products could allow a local malicious user to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code ...
Trendmicro Antivirus \\+ Security
Trendmicro Internet Security
Trendmicro Maximum Security
Trendmicro Premium Security
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »