Apex One

apex_one

Vendor: Trendmicro • 164 CVEs

CVEs (164)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-25246 1Trendmicro 3Apex One OfficescanWorry Free Business Security Nov 21, 2024 Feb 4, 2021 N/A· v4 6.5 MEDIUM· v3 6.4 MEDIUM· v2 An improper access control information disclosure vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG SP1, and Worry-Free Business Security could allow an unauthenticated user to create a bogus ag...Show more An improper access control information disclosure vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG SP1, and Worry-Free Business Security could allow an unauthenticated user to create a bogus agent on an affected server that could be used then make valid configuration queries.Show less
CVE-2021-25243 1Trendmicro 3Apex One OfficescanWorry Free Business Security Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain patch level information.
CVE-2021-25242 1Trendmicro 3Apex One OfficescanWorry Free Business Security Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain version and build informatio...Show more An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain version and build information.Show less
CVE-2021-25241 1Trendmicro 2Apex One Worry Free Business Security Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 A server-side request forgery (SSRF) information disclosure vulnerability in Trend Micro Apex One and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to locate online agents via a sweep.
CVE-2021-25240 1Trendmicro 3Apex One OfficescanWorry Free Business Security Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain x64 agent hofitx information...Show more An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain x64 agent hofitx information.Show less
CVE-2021-25239 1Trendmicro 3Apex One OfficescanWorry Free Business Security Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about x86 agent hotfixes.
CVE-2021-25237 1Trendmicro 1Apex One Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem) could allow an unauthenticated user to obtain information about the managing port used by agents.
CVE-2021-25235 1Trendmicro 2Apex One Officescan Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about a content inspection configuration file.
CVE-2021-25234 1Trendmicro 3Apex One OfficescanWorry Free Business Security Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific...Show more An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific notification configuration file.Show less
CVE-2021-25233 1Trendmicro 3Apex One OfficescanWorry Free Business Security Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific...Show more An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific configuration download file.Show less
CVE-2021-25232 1Trendmicro 2Apex One Officescan Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the SQL database.
CVE-2021-25231 1Trendmicro 3Apex One OfficescanWorry Free Business Security Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific...Show more An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific hotfix history file.Show less
CVE-2021-25230 1Trendmicro 2Apex One Officescan Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the contents of a scan connection exception file.
CVE-2021-25229 1Trendmicro 2Apex One Officescan Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the database server.
CVE-2021-25228 1Trendmicro 3Apex One OfficescanWorry Free Business Security Nov 21, 2024 Feb 4, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about hotfix his...Show more An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about hotfix history.Show less
CVE-2020-28583 1Trendmicro 2Apex One Officescan Nov 21, 2024 Dec 1, 2020 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal version, build and patch infor...Show more An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal version, build and patch information.Show less
CVE-2020-28582 1Trendmicro 2Apex One Officescan Nov 21, 2024 Dec 1, 2020 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal number of managed agents.
CVE-2020-28577 1Trendmicro 2Apex One Officescan Nov 21, 2024 Dec 1, 2020 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal server hostname and db names.
CVE-2020-28576 1Trendmicro 2Apex One Officescan Nov 21, 2024 Dec 1, 2020 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal version and build information.
CVE-2020-28573 1Trendmicro 2Apex One Officescan Nov 21, 2024 Dec 1, 2020 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal the total agents managed by th...Show more An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal the total agents managed by the server.Show less

Previous 1...5 678 9 Next