Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
TrendmicroApex One

17 matches found

CVE
CVEadded 2021/02/04 8:15 p.m.63 views

CVE-2021-25246

An improper access control information disclosure vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG SP1, and Worry-Free Business Security could allow an unauthenticated user to create a bogus agent on an affected server that could be used then make valid configuration quer...

6.5CVSS6.2AI score0.00356EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.61 views

CVE-2021-25232

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the SQL database.

5.3CVSS5.5AI score0.0038EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.55 views

CVE-2021-25233

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific configuration download file.

5.3CVSS5AI score0.00343EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.55 views

CVE-2021-25234

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific notification configuration file.

5.3CVSS5.1AI score0.00343EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.55 views

CVE-2021-25241

A server-side request forgery (SSRF) information disclosure vulnerability in Trend Micro Apex One and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to locate online agents via a sweep.

5.3CVSS5.1AI score0.00421EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.53 views

CVE-2021-25243

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain patch level information.

5.3CVSS5.2AI score0.0034EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.53 views

CVE-2021-25248

An out-of-bounds read information disclosure vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security (10.0 SP1 and Services) could allow an attacker to disclose sensitive information about a named pipe. Please note: an attacker must first obtain...

5.5CVSS5.3AI score0.00148EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.52 views

CVE-2021-25229

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the database server.

5.3CVSS5.1AI score0.0038EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.52 views

CVE-2021-25249

An out-of-bounds write information disclosure vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security (10.0 SP1 and Services) could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obta...

7.8CVSS7.5AI score0.0008EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.50 views

CVE-2021-25228

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about hotfix history.

5.3CVSS5.1AI score0.0034EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.50 views

CVE-2021-25230

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the contents of a scan connection exception file.

5.3CVSS5AI score0.0038EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.50 views

CVE-2021-25231

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific hotfix history file.

5.3CVSS5AI score0.0034EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.49 views

CVE-2021-25240

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain x64 agent hofitx information.

5.3CVSS5.2AI score0.0034EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.47 views

CVE-2021-25235

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about a content inspection configuration file.

5.3CVSS5.1AI score0.0038EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.47 views

CVE-2021-25237

An improper access control vulnerability in Trend Micro Apex One (on-prem) could allow an unauthenticated user to obtain information about the managing port used by agents.

5.3CVSS5.1AI score0.00375EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.45 views

CVE-2021-25239

An improper access control vulnerability in Trend Micro Apex One (on-prem), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about x86 agent hotfixes.

5.3CVSS5.1AI score0.0034EPSS
CVE
CVEadded 2021/02/04 8:15 p.m.44 views

CVE-2021-25242

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain version and build information.

5.3CVSS5.2AI score0.0034EPSS