18 matches found
CVE-2021-36745
Trend Micro ServerProtect family (Storage 6.0; EMC Celerra 5.8; Network Appliance Filers 5.8; Windows/Netware 5.8) contains an authentication bypass vulnerability in the ServerProtect console that could allow a remote attacker to bypass authentication. Affects multiple platforms; CVSS reported as...
CVE-2022-25329
Summary: CVE-2022-25329 affects Trend Micro ServerProtect/Information Server. A hard-coded (static) credential is used for authentication when a specific console command is entered, allowing an unauthenticated remote attacker with access to register to the server and perform authenticated actions...
CVE-2022-25331
CVE-2022-25331 describes uncaught exceptions in Trend Micro ServerProtect/ServerProtection (6.0/5.8 Information Server) that could allow a remote attacker to crash the process. Connected sources corroborate a remote-impact scenario. Some documents also note an underlying issue such as an integer ...
CVE-2019-14688
This CVE affects Trend Micro installer packages. A DLL hijack vulnerability was present in an installer version used by multiple Trend Micro products and could be exploited only during the initial product installation by an authorized user. The attacker must cause the target to place a malicious ...
CVE-2022-25330
CVE-2022-25330 concerns Trend Micro ServerProtect Information Server with integer overflow conditions in versions 6.0/5.8 that could permit a remote attacker to crash the process or achieve remote code execution. Connected sources corroborate an impact including remote code execution and DoS, tie...
CVE-2021-25224
Trend Micro ServerProtect for Linux 3.0 contains a memory exhaustion vulnerability in the manual scan component. A local attacker who can execute low-privileged code on the target can craft specific files to trigger a denial-of-service on the affected product. The vulnerability is tied to the man...
CVE-2017-9032
CVE-2017-9032 affects Trend Micro ServerProtect for Linux 3.0 prior to CP 1531. The vulnerability is a cross-site scripting flaw in the web interface’s log_management.cgi, where the T1 and tmLastConfigFileModifiedDate parameters can be abused to inject arbitrary script/HTML. Evidence in connected...
CVE-2017-9035
Trend Micro ServerProtect for Linux 3.0 (pre-CP 1531) is affected by multiple vulnerabilities in its update mechanism, including: unencrypted update communications allowing eavesdropping and tampering (CVE-2017-9035); unsigned/unvalidated update packages enabling overwrites of libraries and poten...
CVE-2017-9037
CVE-2017-9037 affects Trend Micro ServerProtect for Linux 3.0 prior to CP 1531. The advisory/related reports document cross-site scripting vulnerabilities in notification.cgi and related CGI scripts, enabling an attacker to inject arbitrary script/HTML via parameters such as S44, S5, S_action_fai...
CVE-2020-24561
Trend Micro ServerProtect for Linux 3.0 contains an OS command injection vulnerability (CWE-78) that can allow an attacker with admin/root privileges on the SPLX console to execute arbitrary code on the affected system. Red Hat CVE-2020-24561, NVD, JVN, and NCSC corroborate the vulnerability deta...
CVE-2021-25252
CVE-2021-25252 concerns Trend Micro’s Virus Scan API (VSAPI) and Advanced Threat Scan Engine (ATSE) experiencing a memory exhaustion vulnerability that can cause denial-of-service or a system freeze when processing specially crafted files. Affected components: VSAPI and ATSE in Trend Micro produc...
CVE-2017-9033
CVE-2017-9033 affects Trend Micro ServerProtect for Linux (version 3.0 prior to CP 1531). The Web-based Management Console lacks anti-CSRF tokens, enabling an attacker to submit authenticated requests to start an update from an arbitrary source via SProtectLinux/scanoption_set.cgi. The Core Secur...
CVE-2021-25226
CVE-2021-25226 affects Trend Micro ServerProtect for Linux 3.0. A memory exhaustion flaw in the scan engine can cause a denial of service when processing specially crafted files. Exploitation is described as requiring access to execute low-privilege code on the target system (local). Some connect...
CVE-2017-9036
Trend Micro ServerProtect for Linux 3.0 before CP 1531 contains a local privilege escalation flaw (CVE-2017-9036) where the Web-based Management Console allows the Quarantine directory to be set to any location. Root-owned files moved there can be written by a local user, enabling privilege escal...
CVE-2017-9034
CVE-2017-9034 affects Trend Micro ServerProtect for Linux 3.0 prior to CP 1531. The vulnerability is in the update mechanism, where update packages are not signed/validated beyond size matching, allowing an attacker to overwrite sensitive files (e.g., libvsapi.so, libaction.so) and achieve remote...
CVE-2020-28575
CVE-2020-28575 concerns Trend Micro ServerProtect for Linux 3.0. A heap-based buffer overflow in the Kernel Hook Module (KHM) used by ServerProtect allows local privilege escalation when an attacker can execute high-privileged code. The root cause is improper handling/validation of data length in...
CVE-2021-25225
CVE-2021-25225 affects Trend Micro ServerProtect for Linux 3.0. The vulnerability is in the splx_schedule_scan component and is due to lack of validation of user-supplied data, which can lead to memory exhaustion and denial of service. Exploitation details vary by source: ZDI-21-086 describes rem...
CVE-2020-8607
CVE-2020-8607 affects multiple Trend Micro products that use a specific rootkit protection driver. The vulnerability arises from input validation that lets a user-mode attacker with administrator privileges abuse the driver to modify a kernel address, which can crash the system or potentially ena...