CVE-2021-25243

🗓️ 04 Feb 2021 19:36:48Reported by trendmicroType

cve🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 62 Views

Improper access control vulnerability in Trend Micro Apex One, OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2021-25243	4 Feb 202122:34	–	circl
CNNVD	多款 Trend Micro 产品信息泄露漏洞	4 Feb 202100:00	–	cnnvd
CNVD	Information Disclosure Vulnerability in Multiple Trend Micro Products	5 Feb 202100:00	–	cnvd
Cvelist	CVE-2021-25243	4 Feb 202119:36	–	cvelist
EUVD	EUVD-2021-12154	7 Oct 202500:30	–	euvd
NVD	CVE-2021-25243	4 Feb 202120:15	–	nvd
OSV	CVE-2021-25243	4 Feb 202120:15	–	osv
Prion	Improper access control	4 Feb 202120:15	–	prion
RedhatCVE	CVE-2021-25243	22 May 202521:37	–	redhatcve
Zero Day Initiative	Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability	29 Jan 202100:00	–	zdi

NVD

Node

trendmicro apex_oneMatch2019

trendmicro officescanMatchxgsp1

trendmicro worry-free_business_securityMatch10.0sp1

AND

microsoft windowsMatch-

[
  {
    "product": "Trend Micro Apex One",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "2019, SaaS"
      }
    ]
  },
  {
    "product": "Trend Micro OfficeScan",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "XG SP1"
      }
    ]
  },
  {
    "product": "Trend Micro Worry-Free Business Security",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "10.0 SP1"
      }
    ]
  }
]

Source	Link
success	www.success.trendmicro.com/solution/000284202
success	www.success.trendmicro.com/solution/000284205
success	www.success.trendmicro.com/solution/000284206
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-21-116/

21 Nov 2024 05:54Current

5.2Medium risk

Vulners AI Score5.2

CVSS 25

CVSS 3.15.3

EPSS0.0034