Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apex vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-52092
A security agent link following vulnerability in Trend Micro Apex One could allow a local malicious user to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...
Trendmicro Apex One 2019
Trendmicro Apex One
NA
CVE-2023-52093
An exposed dangerous function vulnerability in the Trend Micro Apex One agent could allow a local malicious user to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order t...
Trendmicro Apex One 2019
Trendmicro Apex One
NA
CVE-2023-52094
An updater link following vulnerability in the Trend Micro Apex One agent could allow a local malicious user to abuse the updater to delete an arbitrary folder, leading for a local privilege escalation on affected installations. Please note: an attacker must first obtain the abil...
Trendmicro Apex One 2019
Trendmicro Apex One
7.5
CVSSv2
CVE-2022-26871
An arbitrary file upload vulnerability in Trend Micro Apex Central could allow an unauthenticated remote malicious user to upload an arbitrary file which could lead to remote code execution.
Trendmicro Apex Central 2019
Trendmicro Apex One -
NA
CVE-2023-52330
A cross-site scripting vulnerability in Trend Micro Apex Central could allow a remote malicious user to execute arbitrary code on affected installations of Trend Micro Apex Central. Please note: user interaction is required to exploit this vulnerability in that the target must vi...
Trendmicro Apex One 2019
Trendmicro Apex One
10
CVSSv2
CVE-2018-16462
A command injection vulnerability in the apex-publish-static-files npm module version <2.0.1 which allows arbitrary shell command execution through a maliciously crafted argument.
Apex-publish-static-files Project Apex-publish-static-files
4.3
CVSSv2
CVE-2006-7158
Cross-site scripting (XSS) vulnerability in Oracle Application Express (APEX) prior to 2.2.1, aka Oracle HTML DB, allows remote malicious users to inject arbitrary web script or HTML via the NOTIFICATION_MSG parameter. NOTE: it is likely that this issue overlaps one of the identi...
Oracle Apex
6
CVSSv2
CVE-2006-7138
SQL injection vulnerability in wwv_flow_utilities.gen_popup_list in the WWV_FLOW_UTILITIES package for Oracle APEX/HTMLDB prior to 2.2 allows remote authenticated users to execute arbitrary SQL by modifying the P_LOV parameter and calculating a matching MD5 checksum for the P_LOV...
Oracle Apex
4.3
CVSSv2
CVE-2006-5599
Cross-site scripting (XSS) vulnerability in Oracle Application Express (formerly HTML DB) prior to 2.2.1 allows remote malicious users to inject arbitrary HTML or web script via the WWV_FLOW_ITEM_HELP package. NOTE: it is likely that this issue overlaps one of the Oracle VulnIDs ...
Oracle Apex 2.2
NA
CVE-2023-0587
A file upload vulnerability in exists in Trend Micro Apex One server build 11110. Using a malformed Content-Length header in an HTTP PUT message sent to URL /officescan/console/html/cgi/fcgiOfcDDA.exe, an unauthenticated remote attacker can upload arbitrary files to the SampleSub...
Trendmicro Apex One -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »