Officescan Security Vulnerabilities and Issues — Officescan CVE List

Lucene search

TrendmicroOfficescan

3 matches found

CVE•added 2020/03/18 1:15 a.m.•96 views

CVE-2020-8470

Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server contains a vulnerable service DLL file that could allow an attacker to delete any file on the server with SYSTEM level privileges. Authentication is not required to exploit this vulnerability.

9.4CVSS7.8AI score0.01122EPSS

CVE•added 2017/10/06 1:29 a.m.•58 views

CVE-2017-14089

An Unauthorized Memory Corruption vulnerability in Trend Micro OfficeScan 11.0 and XG may allow remote unauthenticated users who can access the OfficeScan server to target cgiShowClientAdm.exe and cause memory corruption issues.

9.8CVSS9.5AI score0.31502EPSS

CVE•added 2008/08/27 8:41 p.m.•55 views

CVE-2008-2433

The web management console in Trend Micro OfficeScan 7.0 through 8.0, Worry-Free Business Security 5.0, and Client/Server/Messaging Suite 3.5 and 3.6 creates a random session token based only on the login time, which makes it easier for remote attackers to hijack sessions via brute-force attacks. N...

9.8CVSS9.7AI score0.12313EPSS