Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trendmicro officescan vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-18187
Trend Micro OfficeScan versions 11.0 and XG (12.0) could be exploited by an attacker utilizing a directory traversal vulnerability to extract files from an arbitrary zip file to a specific folder on the OfficeScan server, which could potentially lead to remote code execution (RCE...
Trendmicro Officescan 11.0
Trendmicro Officescan Xg
7.5
CVSSv3
CVE-2019-9489
A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (versions XG and 11.0), and Worry-Free Business Security (versions 10.0, 9.5 and 9.0) could allow an malicious user to modify arbitrary files on the affected product's management console.
Trendmicro Apex One
Trendmicro Apex One As A Service
Trendmicro Business Security 9.0
Trendmicro Officescan 11.0
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 9.5
Trendmicro Worry-free Business Security 10.0
7.5
CVSSv3
CVE-2018-18331
A Trend Micro OfficeScan XG weak file permissions vulnerability on a particular folder for a particular group may allow an malicious user to alter the files, which could lead to other exploits on vulnerable installations.
Trendmicro Officescan Xg
7.5
CVSSv3
CVE-2018-18332
A Trend Micro OfficeScan XG weak file permissions vulnerability may allow an malicious user to potentially manipulate permissions on some key files to modify other files and folders on vulnerable installations.
Trendmicro Officescan Xg
7.5
CVSSv3
CVE-2017-14083
A vulnerability in Trend Micro OfficeScan 11.0 and XG allows remote unauthenticated users who can access the system to download the OfficeScan encryption file.
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
1 EDB exploit
7.5
CVSSv3
CVE-2017-14087
A Host Header Injection vulnerability in Trend Micro OfficeScan XG (12.0) may allow an malicious user to spoof a particular Host header, allowing the malicious user to render arbitrary links that point to a malicious website with poisoned Host header webpages.
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
1 EDB exploit
7.5
CVSSv3
CVE-2017-14086
Pre-authorization Start Remote Process vulnerabilities in Trend Micro OfficeScan 11.0 and XG may allow unauthenticated users who can access the OfficeScan server to start the fcgiOfcDDA.exe executable or cause a potential INI corruption, which may cause the server disk space to b...
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
1 EDB exploit
7
CVSSv3
CVE-2019-14688
Trend Micro has repackaged installers for several Trend Micro products that were found to utilize a version of an install package that had a DLL hijack vulnerability that could be exploited during a new product installation. The vulnerability was found to ONLY be exploitable duri...
Trendmicro Control Manager 7.0
Trendmicro Endpoint Sensor 1.6
Trendmicro Im Security 1.6.5
Trendmicro Mobile Security 9.8
Trendmicro Officescan Xg
Trendmicro Scanmail 14.0
Trendmicro Security 2019
Trendmicro Serverprotect 5.8
Trendmicro Serverprotect 6.0
7
CVSSv3
CVE-2018-6218
A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module (UMH) could allow an malicious user to run arbitrary code on a vulnerable system.
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
Trendmicro Deep Security 10.0
Trendmicro Endpoint Sensor 1.6
Trendmicro Deep Security 10.1
Trendmicro Security 12.0
Trendmicro Worry-free Business Security 9.5
7
CVSSv3
CVE-2017-14088
Memory Corruption Privilege Escalation vulnerabilities in Trend Micro OfficeScan 11.0 and XG allows local malicious users to execute arbitrary code and escalate privileges to resources normally reserved for the kernel on vulnerable installations by exploiting tmwfp.sys. An attack...
Trendmicro Officescan 11.0
Trendmicro Officescan Xg 12.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »