CVE-2020-24556

A vulnerability in Trend Micro Apex One, OfficeScan XG SP1, Worry-Free Business Security 10 SP1 and Worry-Free Business Security Services on Microsoft Windows may allow an attacker to create a hard link to any file on the system, which then could be manipulated to gain a privilege escalation and...

EUVD-2003-1599

Malware in sbrugna...

EUVD-2016-2324

Malware in sbrugna...

VulnCheck KEV: CVE-2020-8599

Trend Micro Apex One and OfficeScan server contain a vulnerable EXE file that could allow a remote attacker to write data to a path on affected installations and bypass root login...

CVE-2021-32465

An incorrect permission preservation vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a remote user to perform an attack and bypass authentication on affected installations. Please note: an attacker must first obtain the ability to execute...

The vulnerability of the Security Agent component in Trend Micro’s antivirus software solutions—Worry-Free Business Security, Apex One, and OfficeScan—allows a malicious actor to escalate their privileges or execute arbitrary code.

The vulnerability of the Security Agent component in Trend Micro’s antivirus software products, namely Worry-Free Business Security, Apex One, and OfficeScan, is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges or execute...

The vulnerability of the Apex One and OfficeScan anti-virus software relates to the disclosure of information, which allows a malicious actor to gain unauthorized access to protected data.

The vulnerability of the Apex One and OfficeScan antivirus software relates to the disclosure of information. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

CVE-2021-25253

An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource used by the service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to...

CVE-2021-28645

An incorrect permission assignment vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target...

CVE-2021-25249

An out-of-bounds write information disclosure vulnerability in Trend Micro Apex One on-prem and SaaS, OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 and Services could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain...

CVE-2021-25243

An improper access control vulnerability in Trend Micro Apex One on-prem and SaaS, OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain patch level information...

CVE-2021-25233

An improper access control vulnerability in Trend Micro Apex One on-prem and SaaS, OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific configuration download file...

CVE-2021-25236

A server-side request forgery SSRF information disclosure vulnerability in Trend Micro OfficeScan XG SP1 and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to locate online agents via a specific sweep...

CVE-2021-25228

An improper access control vulnerability in Trend Micro Apex One on-prem and SaaS, OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about hotfix history...

CVE-2021-25240

An improper access control vulnerability in Trend Micro Apex One on-prem and SaaS, OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain x64 agent hofitx information...

Trend Micro OfficeScan XG 和 Trend Micro Worry-Free Business Security 代码问题漏洞

Trend Micro OfficeScan XG and Trend Micro Worry-Free Business Security are both products of Trend Micro, Inc.Trend Micro OfficeScan XG is a distributed anti-virus software.Trend Micro Worry-Free Business Security is an enterprise-class information security solution. Worry-Free Business Security i...

Trend Micro OfficeScan XG 和 Trend Micro OfficeScan 信息泄露漏洞

Trend Micro OfficeScan XG and Trend Micro Worry-Free Business Security are both products of Trend Micro, Inc.Trend Micro OfficeScan XG is a distributed anti-virus software.Trend Micro Worry-Free Business Security is an enterprise-class information security solution. Worry-Free Business Security i...

Trend Micro Apex One and OfficeScan XG Incorrect Access Control Information Disclosure Vulnerability (CNVD-2020-73782)

Trend Micro Apex One is a suite of endpoint security protection software from Trend Micro that provides automated threat detection and response capabilities.Trend Micro OfficeScan XG is a suite of distributed anti-virus software from Trend Micro. An incorrect access control information disclosure...

CVE-2020-28577

An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal server hostname and db names...

CVE-2020-28583

An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal version, build and patch information...