Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
officescan vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-25250
An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a sensitive file could allow a local malicious user to escalate privileges on affected installations. Please note: an attacker must first obtain the abilit...
Trendmicro Officescan Xg
Trendmicro Apex One 2019
7.8
CVSSv3
CVE-2021-25253
An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource used by the service could allow a local malicious user to escalate privileges on affected installations. Please note: an attacker must first obt...
Trendmicro Officescan Xg
Trendmicro Apex One 2019
7
CVSSv3
CVE-2018-6218
A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module (UMH) could allow an malicious user to run arbitrary code on a vulnerable system.
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
Trendmicro Deep Security 10.0
Trendmicro Endpoint Sensor 1.6
Trendmicro Deep Security 10.1
Trendmicro Security 12.0
Trendmicro Worry-free Business Security 9.5
NA
CVE-2001-1150
Vulnerability in cgiWebupdate.exe in Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.5.2 up to and including 3.5.4 allows remote malicious users to read arbitrary files.
Trend Micro Virus Buster Corporate 3.52
Trend Micro Virus Buster Corporate 3.53
Trend Micro Virus Buster Corporate 3.54
Trend Micro Officescan Corporate 3.5
Trend Micro Officescan Corporate 3.54
5.3
CVSSv3
CVE-2021-25236
A server-side request forgery (SSRF) information disclosure vulnerability in Trend Micro OfficeScan XG SP1 and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to locate online agents via a specific sweep.
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 10.0
5.3
CVSSv3
CVE-2021-25238
An improper access control information disclosure vulnerability in Trend Micro OfficeScan XG SP1 and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about an agent's managing port.
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 10.0
7.5
CVSSv3
CVE-2019-9489
A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (versions XG and 11.0), and Worry-Free Business Security (versions 10.0, 9.5 and 9.0) could allow an malicious user to modify arbitrary files on the affected product's management console.
Trendmicro Apex One
Trendmicro Apex One As A Service
Trendmicro Business Security 9.0
Trendmicro Officescan 11.0
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 9.5
Trendmicro Worry-free Business Security 10.0
NA
CVE-2001-1151
Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.53 allows remote malicious users to access sensitive information from the hotdownload directory without authentication, such as the ofcscan.ini configuration file, which contains a weakly encrypted password.
Trend Micro Virus Buster Corporate 3.53
Trend Micro Officescan Corporate 3.53
5.3
CVSSv3
CVE-2021-25228
An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about hotfix history.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
Trendmicro Worry-free Business Security 10.0
5.3
CVSSv3
CVE-2021-25231
An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific hotfix history file.
Trendmicro Apex One 2019
Trendmicro Officescan Xg
Trendmicro Worry-free Business Security 10.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »