Trendmicro

Trend Micro Endpoint Encryption

9 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-49218

  • EPSS 0.02%
  • Published 17.06.2025 20:28:22
  • Last modified 08.09.2025 21:13:05

A post-auth SQL injection vulnerability in the Trend Micro Endpoint Encryption PolicyServer could allow an attacker to escalate privileges on affected installations. This is similar to, but not identical to CVE-2025-49215. Please note: an attacker...

9.8

CVE-2025-49217

  • EPSS 1.08%
  • Published 17.06.2025 20:28:14
  • Last modified 08.09.2025 21:10:49

An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerability is similar to CVE-2025-49213 but is in a differ...

9.8

CVE-2025-49216

  • EPSS 0.09%
  • Published 17.06.2025 20:28:07
  • Last modified 08.09.2025 21:10:36

An authentication bypass vulnerability in the Trend Micro Endpoint Encryption PolicyServer could allow an attacker to access key methods as an admin user and modify product configurations on affected installations.

8.8

CVE-2025-49215

  • EPSS 0.04%
  • Published 17.06.2025 20:28:00
  • Last modified 08.09.2025 21:10:00

A post-auth SQL injection vulnerability in the Trend Micro Endpoint Encryption PolicyServer could allow an attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged...

8.8

CVE-2025-49214

  • EPSS 1.19%
  • Published 17.06.2025 20:27:52
  • Last modified 08.09.2025 21:09:41

An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could lead to a post-authentication remote code execution on affected installations. Please note: an attacker must first obtain the ability to execute low-pr...

9.8

CVE-2025-49213

  • EPSS 1.48%
  • Published 17.06.2025 20:27:44
  • Last modified 08.09.2025 21:09:21

An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerability is similar to CVE-2025-49212 but is in a differ...

9.8

CVE-2025-49212

  • EPSS 1.48%
  • Published 17.06.2025 20:27:37
  • Last modified 08.09.2025 21:09:04

An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerability is similar to CVE-2025-49220 but is in a differ...

7.8

CVE-2025-49211

  • EPSS 0.02%
  • Published 17.06.2025 20:16:38
  • Last modified 08.09.2025 21:08:51

A SQL injection vulnerability in the Trend Micro Endpoint Encryption PolicyServer could allow an attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on t...

6.8

CVE-2023-28005

  • EPSS 0.05%
  • Published 22.03.2023 06:15:10
  • Last modified 05.05.2025 16:15:33

A vulnerability in Trend Micro Endpoint Encryption Full Disk Encryption version 6.0.0.3204 and below could allow an attacker with physical access to an affected device to bypass Microsoft Windows� Secure Boot process in an attempt to execute other at...