Trendmicro

Officescan

71 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2021-25242

  • EPSS 0.34%
  • Published 04.02.2021 20:15:14
  • Last modified 21.11.2024 05:54:36

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain version and build information.

5.3

CVE-2021-25243

  • EPSS 0.34%
  • Published 04.02.2021 20:15:14
  • Last modified 21.11.2024 05:54:37

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain patch level information.

6.5

CVE-2021-25246

  • EPSS 0.36%
  • Published 04.02.2021 20:15:14
  • Last modified 21.11.2024 05:54:37

An improper access control information disclosure vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG SP1, and Worry-Free Business Security could allow an unauthenticated user to create a bogus agent on an affected server that...

5.5

CVE-2021-25248

  • EPSS 0.15%
  • Published 04.02.2021 20:15:14
  • Last modified 21.11.2024 05:54:37

An out-of-bounds read information disclosure vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security (10.0 SP1 and Services) could allow an attacker to disclose sensitive information about a named...

5.3

CVE-2021-25236

  • EPSS 0.42%
  • Published 04.02.2021 20:15:13
  • Last modified 21.11.2024 05:54:36

A server-side request forgery (SSRF) information disclosure vulnerability in Trend Micro OfficeScan XG SP1 and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to locate online agents via a specific sweep.

5.3

CVE-2021-25228

  • EPSS 0.34%
  • Published 04.02.2021 20:15:13
  • Last modified 21.11.2024 05:54:35

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about hotfix history.

5.3

CVE-2021-25229

  • EPSS 0.38%
  • Published 04.02.2021 20:15:13
  • Last modified 21.11.2024 05:54:35

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the database server.

5.3

CVE-2021-25230

  • EPSS 0.38%
  • Published 04.02.2021 20:15:13
  • Last modified 21.11.2024 05:54:35

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the contents of a scan connection exception file.

5.3

CVE-2021-25231

  • EPSS 0.34%
  • Published 04.02.2021 20:15:13
  • Last modified 21.11.2024 05:54:35

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific hotfix history file.

5.3

CVE-2021-25232

  • EPSS 0.38%
  • Published 04.02.2021 20:15:13
  • Last modified 21.11.2024 05:54:35

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the SQL database.