4 matches found
CVE-2022-25329
Summary: CVE-2022-25329 affects Trend Micro ServerProtect/Information Server. A hard-coded (static) credential is used for authentication when a specific console command is entered, allowing an unauthenticated remote attacker with access to register to the server and perform authenticated actions...
CVE-2022-25330
CVE-2022-25330 concerns Trend Micro ServerProtect Information Server with integer overflow conditions in versions 6.0/5.8 that could permit a remote attacker to crash the process or achieve remote code execution. Connected sources corroborate an impact including remote code execution and DoS, tie...
CVE-2022-25331
CVE-2022-25331 describes uncaught exceptions in Trend Micro ServerProtect/ServerProtection (6.0/5.8 Information Server) that could allow a remote attacker to crash the process. Connected sources corroborate a remote-impact scenario. Some documents also note an underlying issue such as an integer ...
CVE-2021-25252
CVE-2021-25252 concerns Trend Micro’s Virus Scan API (VSAPI) and Advanced Threat Scan Engine (ATSE) experiencing a memory exhaustion vulnerability that can cause denial-of-service or a system freeze when processing specially crafted files. Affected components: VSAPI and ATSE in Trend Micro produc...