Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trendmicro apex one vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2020-8467
A migration tool component of Trend Micro Apex One (2019) and OfficeScan XG contains a vulnerability which could allow remote malicious users to execute arbitrary code on affected installations (RCE). An attempted attack requires user authentication.
Trendmicro Apex One 2019
Trendmicro Officescan Xg
5
CVSSv2
CVE-2021-25229
An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the database server.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
7.2
CVSSv2
CVE-2021-25250
An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a sensitive file could allow a local malicious user to escalate privileges on affected installations. Please note: an attacker must first obtain the abilit...
Trendmicro Officescan Xg
Trendmicro Apex One 2019
7.2
CVSSv2
CVE-2021-25253
An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource used by the service could allow a local malicious user to escalate privileges on affected installations. Please note: an attacker must first obt...
Trendmicro Officescan Xg
Trendmicro Apex One 2019
10
CVSSv2
CVE-2020-8599
Trend Micro Apex One (2019) and OfficeScan XG server contain a vulnerable EXE file that could allow a remote malicious user to write arbitrary data to an arbitrary path on affected installations and bypass ROOT login. Authentication is not required to exploit this vulnerability.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
5
CVSSv2
CVE-2021-25228
An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about hotfix history.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
Trendmicro Worry-free Business Security 10.0
6.4
CVSSv2
CVE-2021-25246
An improper access control information disclosure vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG SP1, and Worry-Free Business Security could allow an unauthenticated user to create a bogus agent on an affected server that could be used then make valid...
Trendmicro Officescan Xg
Trendmicro Apex One 2019
Trendmicro Worry-free Business Security 10.0
4.6
CVSSv2
CVE-2021-42012
A stack-based buffer overflow vulnerability in Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security 10.0 SP1 could allow a local malicious user to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to exec...
Trendmicro Apex One 2019
Trendmicro Worry-free Business Security 10.0
Trendmicro Worry-free Business Security Services -
10
CVSSv2
CVE-2019-18189
A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (11.0, XG) and Worry-Free Business Security (9.5, 10.0) may allow an malicious user to bypass authentication and log on to an affected product's management console as a root user. The vulnerability does ...
Trendmicro Apex One
Trendmicro Worry-free Business Security 10.0
Trendmicro Officescan 11.0
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 9.5
10
CVSSv2
CVE-2020-8598
Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server contains a vulnerable service DLL file that could allow a remote malicious user to execute arbitrary code on affected installations with SYSTEM level privileges. Authentication is ...
Trendmicro Apex One 2019
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 9.0
Trendmicro Worry-free Business Security 9.5
Trendmicro Worry-free Business Security 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »