Trendmicro

Officescan

71 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2021-32465

  • EPSS 3.44%
  • Veröffentlicht 04.08.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:07:05

An incorrect permission preservation vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a remote user to perform an attack and bypass authentication on affected installations. Please note: an attacker must ...

7.8

CVE-2021-32464

  • EPSS 0.09%
  • Veröffentlicht 04.08.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:07:05

An incorrect permission assignment privilege escalation vulnerability in Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security Services could allow an attacker to modify a specific script before it is executed. Please note: an ...

7.8

CVE-2021-36742

Warnung
  • EPSS 1.16%
  • Veröffentlicht 29.07.2021 20:15:07
  • Zuletzt bearbeitet 13.02.2025 14:26:24

A improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG and Worry-Free Business Security 10.0 SP1 allows a local attacker to escalate privileges on affected installations. Please note: an attacker must ...

8.8

CVE-2021-36741

Warnung
  • EPSS 0.67%
  • Veröffentlicht 29.07.2021 20:15:07
  • Zuletzt bearbeitet 13.03.2025 16:33:58

An improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG, and Worry-Free Business Security 10.0 SP1 allows a remote attached to upload arbitrary files on affected installations. Please note: an attacker...

5.5

CVE-2021-28646

  • EPSS 0.06%
  • Veröffentlicht 13.04.2021 13:15:13
  • Zuletzt bearbeitet 21.11.2024 06:00:00

An insecure file permissions vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local attacker to take control of a specific log file on affected installations.

7.8

CVE-2021-28645

  • EPSS 0.07%
  • Veröffentlicht 13.04.2021 13:15:13
  • Zuletzt bearbeitet 21.11.2024 06:00:00

An incorrect permission assignment vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the abilit...

7.8

CVE-2021-25253

  • EPSS 1.09%
  • Veröffentlicht 13.04.2021 13:15:13
  • Zuletzt bearbeitet 21.11.2024 05:54:38

An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource used by the service could allow a local attacker to escalate privileges on affected installations. Please note: an...

7.8

CVE-2021-25250

  • EPSS 0.07%
  • Veröffentlicht 13.04.2021 13:15:13
  • Zuletzt bearbeitet 21.11.2024 05:54:37

An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a sensitive file could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must...

5.5

CVE-2021-25252

  • EPSS 0.06%
  • Veröffentlicht 03.03.2021 16:15:13
  • Zuletzt bearbeitet 21.11.2024 05:54:38

Trend Micro's Virus Scan API (VSAPI) and Advanced Threat Scan Engine (ATSE) - are vulnerable to a memory exhaustion vulnerability that may lead to denial-of-service or system freeze if exploited by an attacker using a specially crafted file.

7.8

CVE-2021-25249

  • EPSS 0.08%
  • Veröffentlicht 04.02.2021 20:15:14
  • Zuletzt bearbeitet 21.11.2024 05:54:37

An out-of-bounds write information disclosure vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security (10.0 SP1 and Services) could allow a local attacker to escalate privileges on affected instal...