Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trendmicro officescan - vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-25253
An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource used by the service could allow a local malicious user to escalate privileges on affected installations. Please note: an attacker must first obt...
Trendmicro Officescan Xg
Trendmicro Apex One 2019
7.8
CVSSv3
CVE-2021-25249
An out-of-bounds write information disclosure vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security (10.0 SP1 and Services) could allow a local malicious user to escalate privileges on affected installations. Please note: an...
Trendmicro Apex One 2019
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 10.0
7.8
CVSSv3
CVE-2020-24562
A vulnerability in Trend Micro OfficeScan XG SP1 on Microsoft Windows may allow an malicious user to create a hard link to any file on the system, which then could be manipulated to gain a privilege escalation and code execution. An attacker must first obtain the ability to execu...
Trendmicro Officescan Xg
7.8
CVSSv3
CVE-2020-24556
A vulnerability in Trend Micro Apex One, OfficeScan XG SP1, Worry-Free Business Security 10 SP1 and Worry-Free Business Security Services on Microsoft Windows may allow an malicious user to create a hard link to any file on the system, which then could be manipulated to gain a pr...
Trendmicro Apex One 2019
Trendmicro Apex One Saas
Trendmicro Worry-free Business Security 10.0
Trendmicro Worry-free Business Security Services -
7.8
CVSSv3
CVE-2020-24559
A vulnerability in Trend Micro Apex One, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services on macOS may allow an malicious user to manipulate a certain binary to load and run a script from a user-writable folder, which then would allow them to execut...
Trendmicro Apex One 2019
Trendmicro Apex One Saas
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 10.0
Trendmicro Worry-free Business Security Services -
7.8
CVSSv3
CVE-2019-9492
A DLL side-loading vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow an authenticated malicious user to gain code execution and terminate the product's process - disabling endpoint protection. The attacker must have already gained authentication and have lo...
Trendmicro Officescan 11.0
Trendmicro Officescan Xg
7.5
CVSSv3
CVE-2020-8470
Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server contains a vulnerable service DLL file that could allow an malicious user to delete any file on the server with SYSTEM level privileges. Authentication is not required to exploit t...
Trendmicro Apex One 2019
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 9.0
Trendmicro Worry-free Business Security 9.5
Trendmicro Worry-free Business Security 10.0
7.5
CVSSv3
CVE-2019-18187
Trend Micro OfficeScan versions 11.0 and XG (12.0) could be exploited by an attacker utilizing a directory traversal vulnerability to extract files from an arbitrary zip file to a specific folder on the OfficeScan server, which could potentially lead to remote code execution (RCE...
Trendmicro Officescan Xg
Trendmicro Officescan 11.0
7.5
CVSSv3
CVE-2019-9489
A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (versions XG and 11.0), and Worry-Free Business Security (versions 10.0, 9.5 and 9.0) could allow an malicious user to modify arbitrary files on the affected product's management console.
Trendmicro Apex One
Trendmicro Worry-free Business Security 9.5
Trendmicro Officescan Xg
Trendmicro Apex One As A Service
Trendmicro Business Security 9.0
Trendmicro Worry-free Business Security 10.0
Trendmicro Officescan 11.0
7.5
CVSSv3
CVE-2018-18331
A Trend Micro OfficeScan XG weak file permissions vulnerability on a particular folder for a particular group may allow an malicious user to alter the files, which could lead to other exploits on vulnerable installations.
Trendmicro Officescan Xg
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »