Mobile Security@9.8 Security Vulnerabilities and Issues — Mobile Security@9.8 CVE List

Lucene search

TrendmicroMobile Security9.8

14 matches found

CVE•added 2020/02/20 11:15 p.m.•82 views

CVE-2019-14688

Trend Micro has repackaged installers for several Trend Micro products that were found to utilize a version of an install package that had a DLL hijack vulnerability that could be exploited during a new product installation. The vulnerability was found to ONLY be exploitable during an initial produ...

7CVSS6.9AI score0.00409EPSS

CVE•added 2022/09/19 6:15 p.m.•53 views

CVE-2022-40980

A potential unathenticated file deletion vulnerabilty on Trend Micro Mobile Security for Enterprise 9.8 SP5 could allow an attacker with access to the Management Server to delete files. This issue was resolved in 9.8 SP5 Critical Patch 2.

9.1CVSS9.2AI score0.00332EPSS

CVE•added 2023/06/26 10:15 p.m.•52 views

CVE-2023-35695

A remote attacker could leverage a vulnerability in Trend Micro Mobile Security (Enterprise) 9.8 SP5 to download a particular log file which may contain sensitive information regarding the product.

7.5CVSS7.5AI score0.00157EPSS

CVE•added 2023/06/26 10:15 p.m.•46 views

CVE-2023-32523

Affected versions of Trend Micro Mobile Security (Enterprise) 9.8 SP5 contain some widgets that would allow a remote user to bypass authentication and potentially chain with other vulnerabilities. Please note: an attacker must first obtain the ability to execute low-privileged code on the target sy...

8.8CVSS9.1AI score0.0017EPSS

CVE•added 2024/01/23 9:15 p.m.•40 views

CVE-2023-41177

Reflected cross-site scripting (XSS) vulnerabilities in Trend Micro Mobile Security (Enterprise) could allow an exploit against an authenticated victim that visits a malicious link provided by an attacker. Please note, this vulnerability is similar to, but not identical to, CVE-2023-41178.

6.1CVSS5.9AI score0.00411EPSS

CVE•added 2023/06/26 10:15 p.m.•37 views

CVE-2023-32525

Trend Micro Mobile Security (Enterprise) 9.8 SP5 contains widget vulnerabilities that could allow a remote attacker to create arbitrary files on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit thi...

6.5CVSS6.9AI score0.00212EPSS

CVE•added 2023/06/26 10:15 p.m.•34 views

CVE-2023-32522

A path traversal exists in a specific dll of Trend Micro Mobile Security (Enterprise) 9.8 SP5 which could allow an authenticated remote attacker to delete arbitrary files. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit ...

8.1CVSS8.2AI score0.01213EPSS

CVE•added 2024/01/23 9:15 p.m.•34 views

CVE-2023-41176

6.1CVSS5.9AI score0.00377EPSS

CVE•added 2024/01/23 9:15 p.m.•34 views

CVE-2023-41178

6.1CVSS5.9AI score0.00411EPSS

CVE•added 2023/06/26 10:15 p.m.•32 views

CVE-2023-32521

A path traversal exists in a specific service dll of Trend Micro Mobile Security (Enterprise) 9.8 SP5 which could allow an unauthenticated remote attacker to delete arbitrary files.

9.1CVSS9.3AI score0.71112EPSS

CVE•added 2023/06/26 10:15 p.m.•30 views

CVE-2023-32528

Trend Micro Mobile Security (Enterprise) 9.8 SP5 contains vulnerable .php files that could allow a remote attacker to execute arbitrary code on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this...

8.8CVSS8.9AI score0.03428EPSS

CVE•added 2023/06/26 10:15 p.m.•28 views

CVE-2023-32527

8.8CVSS8.9AI score0.03428EPSS

CVE•added 2023/06/26 10:15 p.m.•24 views

CVE-2023-32524

8.8CVSS9.1AI score0.0017EPSS

CVE•added 2023/06/26 10:15 p.m.•23 views

CVE-2023-32526

6.5CVSS6.9AI score0.00212EPSS