Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trendmicro officescan vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-8599
Trend Micro Apex One (2019) and OfficeScan XG server contain a vulnerable EXE file that could allow a remote malicious user to write arbitrary data to an arbitrary path on affected installations and bypass ROOT login. Authentication is not required to exploit this vulnerability.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
7.8
CVSSv3
CVE-2021-32464
An incorrect permission assignment privilege escalation vulnerability in Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security Services could allow an malicious user to modify a specific script before it is executed. Please note: an attacker must first obta...
Trendmicro Officescan Xg
Trendmicro Apex One 2019
7.8
CVSSv3
CVE-2021-28645
An incorrect permission assignment vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local malicious user to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privile...
Trendmicro Officescan Xg
Trendmicro Apex One 2019
5.5
CVSSv3
CVE-2021-28646
An insecure file permissions vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local malicious user to take control of a specific log file on affected installations.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
8.8
CVSSv3
CVE-2021-32465
An incorrect permission preservation vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a remote user to perform an attack and bypass authentication on affected installations. Please note: an attacker must first obtain the ability to ex...
Trendmicro Officescan Xg
Trendmicro Apex One 2019
5.3
CVSSv3
CVE-2021-25230
An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the contents of a scan connection exception file.
Trendmicro Apex One 2019
Trendmicro Officescan Xg
5.3
CVSSv3
CVE-2021-25232
An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the SQL database.
Trendmicro Apex One 2019
Trendmicro Officescan Xg
5.3
CVSSv3
CVE-2020-28573
An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal the total agents managed by the server.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
5.3
CVSSv3
CVE-2020-28576
An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal version and build information.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
5.3
CVSSv3
CVE-2020-28577
An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal server hostname and db names.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »