Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trendmicro vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv2
CVE-2015-2873
Trend Micro Deep Discovery Inspector (DDI) on Deep Discovery Threat appliances with software prior to 3.5.1477, 3.6.x prior to 3.6.1217, 3.7.x prior to 3.7.1248, 3.8.x prior to 3.8.1263, and other versions allows remote malicious users to obtain sensitive information or change th...
Trendmicro Deep Discovery Inspector 3.5
Trendmicro Deep Discovery Inspector 3.6
Trendmicro Deep Discovery Inspector 3.7
Trendmicro Deep Discovery Inspector 3.8
7.8
CVSSv2
CVE-2018-6237
A vulnerability in Trend Micro Smart Protection Server (Standalone) 3.x could allow an unauthenticated remote malicious user to manipulate the product to send a large number of specially crafted HTTP requests to potentially cause the file system to fill up, eventually causing a d...
Trendmicro Smart Protection Server 3.0
Trendmicro Smart Protection Server 3.1
Trendmicro Smart Protection Server 3.2
Trendmicro Smart Protection Server 3.3
9
CVSSv2
CVE-2018-10350
A SQL injection remote code execution vulnerability in Trend Micro Smart Protection Server (Standalone) 3.x could allow a remote malicious user to execute arbitrary code on vulnerable installations due to a flaw within the handling of parameters provided to wcs\_bwlists\_handler....
Trendmicro Smart Protection Server 3.0
Trendmicro Smart Protection Server 3.1
Trendmicro Smart Protection Server 3.2
Trendmicro Smart Protection Server 3.3
7.5
CVSSv2
CVE-2008-2433
The web management console in Trend Micro OfficeScan 7.0 up to and including 8.0, Worry-Free Business Security 5.0, and Client/Server/Messaging Suite 3.5 and 3.6 creates a random session token based only on the login time, which makes it easier for remote malicious users to hijac...
Trendmicro Client Server Messaging Suite 3.5
Trendmicro Client Server Messaging Suite 3.6
Trendmicro Officescan
Trendmicro Worry-free Business Security 5.0
7.2
CVSSv2
CVE-2019-14685
A local privilege escalation vulnerability exists in Trend Micro Security 2019 (v15.0) in which, if exploited, would allow an malicious user to manipulate a specific product feature to load a malicious service.
Trendmicro Antivirus + Security 2019 15.0
Trendmicro Internet Security 2019 15.0
Trendmicro Maximum Security 2019 15.0
Trendmicro Premium Security 2019 15.0
3.6
CVSSv2
CVE-2020-24558
A vulnerability in an Trend Micro Apex One, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services dll may allow an malicious user to manipulate it to cause an out-of-bounds read that crashes multiple processes in the product. An attacker must first obtai...
Trendmicro Apex One 2019
Trendmicro Apex One Saas
Trendmicro Worry-free Business Security 10.0
Trendmicro Worry-free Business Security Services -
5
CVSSv2
CVE-2021-25234
An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific notification configuration file.
Trendmicro Apex One 2019
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 10.0
5
CVSSv2
CVE-2021-25239
An improper access control vulnerability in Trend Micro Apex One (on-prem), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about x86 agent hotfixes.
Trendmicro Apex One 2019
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 10.0
5
CVSSv2
CVE-2021-25228
An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about hotfix history.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
Trendmicro Worry-free Business Security 10.0
5
CVSSv2
CVE-2021-25231
An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific hotfix history file.
Trendmicro Apex One 2019
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
malicious code
XML injection
CVE-2024-28020
CVE-2024-35252
CVE-2024-5833
CVE-2024-30066
injection
CVE-2024-23282
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »