Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
officescan vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-25250
An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a sensitive file could allow a local malicious user to escalate privileges on affected installations. Please note: an attacker must first obtain the abilit...
Trendmicro Officescan Xg
Trendmicro Apex One 2019
7.8
CVSSv3
CVE-2021-25253
An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource used by the service could allow a local malicious user to escalate privileges on affected installations. Please note: an attacker must first obt...
Trendmicro Officescan Xg
Trendmicro Apex One 2019
7.8
CVSSv3
CVE-2021-32464
An incorrect permission assignment privilege escalation vulnerability in Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security Services could allow an malicious user to modify a specific script before it is executed. Please note: an attacker must first obta...
Trendmicro Apex One 2019
Trendmicro Officescan Xg
5.3
CVSSv3
CVE-2021-25236
A server-side request forgery (SSRF) information disclosure vulnerability in Trend Micro OfficeScan XG SP1 and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to locate online agents via a specific sweep.
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 10.0
5.3
CVSSv3
CVE-2021-25238
An improper access control information disclosure vulnerability in Trend Micro OfficeScan XG SP1 and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about an agent's managing port.
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 10.0
5.3
CVSSv3
CVE-2021-25229
An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the database server.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
5.3
CVSSv3
CVE-2020-28573
An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal the total agents managed by the server.
Trendmicro Apex One 2019
Trendmicro Officescan Xg
5.3
CVSSv3
CVE-2020-28577
An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal server hostname and db names.
Trendmicro Apex One 2019
Trendmicro Officescan Xg
5.3
CVSSv3
CVE-2020-28582
An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal number of managed agents.
Trendmicro Apex One 2019
Trendmicro Officescan Xg
8.8
CVSSv3
CVE-2020-8467
A migration tool component of Trend Micro Apex One (2019) and OfficeScan XG contains a vulnerability which could allow remote malicious users to execute arbitrary code on affected installations (RCE). An attempted attack requires user authentication.
Trendmicro Apex One 2019
Trendmicro Officescan Xg
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »