Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trendmicro officescan - vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2019-19691
A vulnerability in Trend Micro Apex One and OfficeScan XG could allow an malicious user to expose a masked credential key by manipulating page elements using development tools. Note that the attacker must already have admin/root privileges on the product console to exploit this v...
Trendmicro Apex One 2019
Trendmicro Officescan Xg
5
CVSSv2
CVE-2019-18187
Trend Micro OfficeScan versions 11.0 and XG (12.0) could be exploited by an attacker utilizing a directory traversal vulnerability to extract files from an arbitrary zip file to a specific folder on the OfficeScan server, which could potentially lead to remote code execution (RCE...
Trendmicro Officescan Xg
Trendmicro Officescan 11.0
10
CVSSv2
CVE-2019-18189
A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (11.0, XG) and Worry-Free Business Security (9.5, 10.0) may allow an malicious user to bypass authentication and log on to an affected product's management console as a root user. The vulnerability does ...
Trendmicro Apex One
Trendmicro Worry-free Business Security 10.0
Trendmicro Officescan 11.0
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 9.5
4.6
CVSSv2
CVE-2019-9492
A DLL side-loading vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow an authenticated malicious user to gain code execution and terminate the product's process - disabling endpoint protection. The attacker must have already gained authentication and have lo...
Trendmicro Officescan 11.0
Trendmicro Officescan Xg
5
CVSSv2
CVE-2019-9489
A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (versions XG and 11.0), and Worry-Free Business Security (versions 10.0, 9.5 and 9.0) could allow an malicious user to modify arbitrary files on the affected product's management console.
Trendmicro Apex One
Trendmicro Worry-free Business Security 9.5
Trendmicro Officescan Xg
Trendmicro Apex One As A Service
Trendmicro Business Security 9.0
Trendmicro Worry-free Business Security 10.0
Trendmicro Officescan 11.0
5
CVSSv2
CVE-2018-18331
A Trend Micro OfficeScan XG weak file permissions vulnerability on a particular folder for a particular group may allow an malicious user to alter the files, which could lead to other exploits on vulnerable installations.
Trendmicro Officescan Xg
5
CVSSv2
CVE-2018-18332
A Trend Micro OfficeScan XG weak file permissions vulnerability may allow an malicious user to potentially manipulate permissions on some key files to modify other files and folders on vulnerable installations.
Trendmicro Officescan Xg
1.9
CVSSv2
CVE-2018-15364
A Named Pipe Request Processing Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro OfficeScan XG (12.0) could allow a local malicious user to disclose sensitive information on vulnerable installations. An attacker must first obtain the ability to execute low-p...
Trendmicro Officescan Xg 12.0
10
CVSSv2
CVE-2018-3608
A vulnerability in Trend Micro Maximum Security's (Consumer) 2018 (versions 12.0.1191 and below) User-Mode Hooking (UMH) driver could allow an malicious user to create a specially crafted packet that could alter a vulnerable system in such a way that malicious code could be ...
Trendmicro Maximum Security
Trendmicro Antivirus \\+ Security
Trendmicro Internet Security
Trendmicro Premium Security
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
Trendmicro Officescan Monthly 12.0
Trendmicro Officescan Monthly 11.0
1 Github repository
2.1
CVSSv2
CVE-2018-10507
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a malicious user to take a series of steps to bypass or render the OfficeScan Unauthorized Change Prevention inoperable on vulnerable installations. An attacker must already have administrator privileges in ord...
Trendmicro Officescan Xg
Trendmicro Officescan 11.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »