Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistTrendmicroCVELIST:CVE-2021-25253
HistoryApr 13, 2021 - 12:53 p.m.

CVE-2021-25253

2021-04-1312:53:59
trendmicro
www.cve.org
3
improper access control
trend micro
local attacker
privilege escalation
vulnerability

EPSS

0

Percentile

15.9%

JSON

An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource used by the service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CNA Affected

[
  {
    "product": "Trend Micro Apex One\r\n",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "2019, SaaS"
      }
    ]
  },
  {
    "product": "Trend Micro OfficeScan",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "XG SP1"
      }
    ]
  }
]

Related

zdi 1
prion 1
cve 1
nvd 1
zdi
zdi
Trend Micro Apex One Improper Access Control Privilege Escalation Vulnerability
2021-04-12 00:00:00
prion
prion
Improper access control
2021-04-13 13:15:00
cve
cve
CVE-2021-25253
2021-04-13 13:15:13
nvd
nvd
CVE-2021-25253
2021-04-13 13:15:13

EPSS

0

Percentile

15.9%

JSON
Related for CVELIST:CVE-2021-25253
zdi1prion1cve1nvd1