EUVD-2021-12164

Malware in sbrugna...

EUVD-2021-29090

Malicious code in bioql PyPI...

CVE-2025-49214

CVE-2025-49214 concerns Trend Micro Endpoint Encryption PolicyServer with an insecure deserialization flaw that could enable post-auth remote code execution. Affected component/behavior: deserialization function in PolicyServer; root cause described as insecure deserialization. Impact: high acros...

CVE-2021-42104

Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the abili...

PT-2025-12813 · Trend Micro · Trend Micro Apex One Security Agent Plug-In User Interface Manager

Name of the Vulnerable Software and Affected Versions: Trend Micro Apex One Security Agent Plug-in User Interface Manager affected versions not specified Description: A local attacker could bypass existing security and execute arbitrary code on affected installations. The attacker must first obta...

CVE-2021-36742

A improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG and Worry-Free Business Security 10.0 SP1 allows a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute...

CVE-2020-28574

A unauthenticated path traversal arbitrary remote file deletion vulnerability in Trend Micro Worry-Free Business Security 10 SP1 could allow an unauthenticated attacker to exploit the vulnerability and modify or delete arbitrary files on the product's management console...