Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apex vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-6248
The Syrus4 IoT gateway utilizes an unsecured MQTT server to download and execute arbitrary commands, allowing a remote unauthenticated malicious user to execute code on any Syrus4 device connected to the cloud service. The MQTT server also leaks the location, video and diagnostic...
Digitalcomtech Syrus 4g Iot Telematics Gateway Firmware Apex-23.43.2
NA
CVE-2023-52328
Certain dashboard widgets on Trend Micro Apex Central (on-premise) are vulnerable to cross-site scripting (XSS) attacks that may allow an malicious user to achieve remote code execution on affected servers. Please note this vulnerability is similar, but not identical to CVE-2023-...
Trendmicro Apex Central 2019
NA
CVE-2023-32529
Vulnerable modules of Trend Micro Apex Central (on-premise) contain vulnerabilities which would allow authenticated users to perform a SQL injection that could lead to remote code execution. Please note: an attacker must first obtain authentication on the target system in order t...
Trendmicro Apex Central 2019
NA
CVE-2023-32531
Certain dashboard widgets on Trend Micro Apex Central (on-premise) are vulnerable to cross-site scripting (XSS) attacks that may allow an malicious user to achieve remote code execution on affected servers. This is similar to, but not identical to CVE-2023-32532 up to and includi...
Trendmicro Apex Central 2019
NA
CVE-2023-32533
Certain dashboard widgets on Trend Micro Apex Central (on-premise) are vulnerable to cross-site scripting (XSS) attacks that may allow an malicious user to achieve remote code execution on affected servers. This is similar to, but not identical to CVE-2023-32531 up to and includi...
Trendmicro Apex Central 2019
NA
CVE-2023-32537
Affected versions Trend Micro Apex Central (on-premise) are vulnerable to potential authenticated reflected cross-site scripting (XSS) attacks due to user input validation and sanitization issues. Please note: an attacker must first obtain authentication to Apex Central on the ta...
Trendmicro Apex Central 2019
NA
CVE-2023-38624
A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 2019 (lower than build 6481) could allow an malicious user to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low...
Trendmicro Apex Central 2019
NA
CVE-2023-38625
A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 2019 (lower than build 6481) could allow an malicious user to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low...
Trendmicro Apex Central 2019
NA
CVE-2023-38626
A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 2019 (lower than build 6481) could allow an malicious user to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low...
Trendmicro Apex Central 2019
NA
CVE-2023-38627
A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 2019 (lower than build 6481) could allow an malicious user to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low...
Trendmicro Apex Central 2019
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »