Scanmail Security Vulnerabilities and Issues — Scanmail CVE List

Lucene search

TrendmicroScanmail

6 matches found

CVE•added 2020/02/20 11:15 p.m.•82 views

CVE-2019-14688

Trend Micro has repackaged installers for several Trend Micro products that were found to utilize a version of an install package that had a DLL hijack vulnerability that could be exploited during a new product installation. The vulnerability was found to ONLY be exploitable during an initial produ...

7CVSS6.9AI score0.00409EPSS

CVE•added 2017/12/16 2:29 a.m.•46 views

CVE-2017-14091

A vulnerability in Trend Micro ScanMail for Exchange 12.0 exists in which certain specific installations that utilize a uncommon feature - Other Update Sources - could be exploited to overwrite sensitive files in the ScanMail for Exchange directory.

7.6CVSS8.3AI score0.00254EPSS

CVE•added 2021/03/03 4:15 p.m.•46 views

CVE-2021-25252

Trend Micro's Virus Scan API (VSAPI) and Advanced Threat Scan Engine (ATSE) - are vulnerable to a memory exhaustion vulnerability that may lead to denial-of-service or system freeze if exploited by an attacker using a specially crafted file.

5.5CVSS5.4AI score0.00063EPSS

CVE•added 2017/12/16 2:29 a.m.•45 views

CVE-2017-14092

The absence of Anti-CSRF tokens in Trend Micro ScanMail for Exchange 12.0 web interface forms could allow an attacker to submit authenticated requests when an authenticated user browses an attacker-controlled domain.

8.8CVSS8.8AI score0.00271EPSS

CVE•added 2017/12/16 2:29 a.m.•41 views

CVE-2017-14090

A vulnerability in Trend Micro ScanMail for Exchange 12.0 exists in which some communications to the update servers are not encrypted.

9.1CVSS9.1AI score0.0029EPSS

CVE•added 2017/12/16 2:29 a.m.•39 views

CVE-2017-14093

The Log Query and Quarantine Query pages in Trend Micro ScanMail for Exchange 12.0 are vulnerable to cross site scripting (XSS) attacks.

6.1CVSS7.2AI score0.00355EPSS