← Back

Trendmicro

trendmicro

559 CVEs • 105 products

Products (105)

Click to collapse
Toggle
Apex One
apex_one
164 CVEs
Officescan
officescan
71 CVEs
Worry Free Business Security
worry-free_business_security
58 CVEs
Apex Central
apex_central
35 CVEs
Interscan Web Security Virtual Appliance
interscan_web_security_virtual_appliance
29 CVEs
Worry Free Business Security Services
worry-free_business_security_services
25 CVEs
Control Manager
control_manager
22 CVEs
Mobile Security
mobile_security
21 CVEs
Email Encryption Gateway
email_encryption_gateway
19 CVEs
Antivirus+
antivirus+
18 CVEs
Serverprotect
serverprotect
18 CVEs
Internet Security
internet_security
17 CVEs
Password Manager
password_manager
15 CVEs
Deep Security Agent
deep_security_agent
15 CVEs
Interscan Messaging Security Virtual Appliance
interscan_messaging_security_virtual_appliance
13 CVEs
Smart Protection Server
smart_protection_server
13 CVEs
Maximum Security
maximum_security
13 CVEs
Premium Security
premium_security
13 CVEs
Threat Discovery Appliance
threat_discovery_appliance
12 CVEs
Maximum Security 2020
maximum_security_2020
12 CVEs
Internet Security 2020
internet_security_2020
11 CVEs
Premium Security 2020
premium_security_2020
11 CVEs
Housecall
housecall
9 CVEs
Trend Micro Endpoint Encryption
trend_micro_endpoint_encryption
9 CVEs
Trend Micro Antivirus
trend_micro_antivirus
8 CVEs
Security
security
8 CVEs
Maximum Security 2019
maximum_security_2019
8 CVEs
Deep Security
deep_security
7 CVEs
Internet Security 2019
internet_security_2019
7 CVEs
Premium Security 2019
premium_security_2019
7 CVEs
Housecall For Home Networks
housecall_for_home_networks
7 CVEs
Maximum Security 2022
maximum_security_2022
7 CVEs
Deep Discovery Inspector
deep_discovery_inspector
6 CVEs
Scanmail
scanmail
6 CVEs
Antivirus + Security
antivirus_+_security
6 CVEs
Antivirus+ Security 2020
antivirus+_security_2020
6 CVEs
Antivirus For Mac 2017
antivirus_for_mac_2017
5 CVEs
Antivirus For Mac 2018
antivirus_for_mac_2018
5 CVEs
Antivirus For Mac 2019
antivirus_for_mac_2019
5 CVEs
Antivirus + Security 2019
antivirus_+_security_2019
5 CVEs
Vulnerability Protection
vulnerability_protection
5 CVEs
Maximum Security 2021
maximum_security_2021
5 CVEs
Home Network Security
home_network_security
5 CVEs
Trend Vision One
trend_vision_one
5 CVEs
Deep Security Manager
deep_security_manager
4 CVEs
Officescan Cloud
officescan_cloud
4 CVEs
Serverprotect For Storage
serverprotect_for_storage
4 CVEs
Interscan Messaging Security Suite
interscan_messaging_security_suite
3 CVEs
Endpoint Sensor
endpoint_sensor
3 CVEs
Deep Discovery Director
deep_discovery_director
3 CVEs
Antivirus+ 2020
antivirus+_2020
3 CVEs
Officescan Business Security
officescan_business_security
3 CVEs
Antivirus+ Security 2021
antivirus+_security_2021
3 CVEs
Internet Security 2021
internet_security_2021
3 CVEs
Premium Security 2021
premium_security_2021
3 CVEs
Serverprotect For Network Appliance Filer
serverprotect_for_network_appliance_filer
3 CVEs
Interscan Web Security Suite
interscan_web_security_suite
2 CVEs
Deep Discovery Email Inspector
deep_discovery_email_inspector
2 CVEs
Officescan Xg
officescan_xg
2 CVEs
Dr. Safety
dr._safety
2 CVEs
Anti Threat Toolkit
anti-threat_toolkit
2 CVEs
Antivirus + Security 2020
antivirus_+_security_2020
2 CVEs
Im Security
im_security
2 CVEs
Portable Security
portable_security
2 CVEs
Safe Lock
safe_lock
2 CVEs
Antivirus+ 2019
antivirus+_2019
2 CVEs
Cloud Edge
cloud_edge
2 CVEs
Maximum Security 2023
maximum_security_2023
2 CVEs
Antivirus One
antivirus_one
2 CVEs
Client Server Messaging Suite
client_server_messaging_suite
1 CVE
Trend Micro Internet Security
trend_micro_internet_security
1 CVE
Internet Security 2010
internet_security_2010
1 CVE
Tmeext.sys
tmeext.sys
1 CVE
Virtual Mobile Infrastructure
virtual_mobile_infrastructure
1 CVE
Encryption For Email
encryption_for_email
1 CVE
Endpoint Application Control
endpoint_application_control
1 CVE
Officescan Monthly
officescan_monthly
1 CVE
Apex One As A Service
apex_one_as_a_service
1 CVE
Business Security
business_security
1 CVE
Ransom Buster
ransom_buster
1 CVE
Deep Security As A Service
deep_security_as_a_service
1 CVE
Antivirus Toolkit
antivirus_toolkit
1 CVE
Officescan Business Security Service
officescan_business_security_service
1 CVE
Online Scan
online_scan
1 CVE
Rootkit Buster
rootkit_buster
1 CVE
Deep Discovery Analyzer
deep_discovery_analyzer
1 CVE
Portal Protect
portal_protect
1 CVE
Scanmail For Ibm Domino
scanmail_for_ibm_domino
1 CVE
Serverprotect For Network Appliance Filers
serverprotect_for_network_appliance_filers
1 CVE
Security For Best Buy
security_for_best_buy
1 CVE
Antivirus+ Security
antivirus+_security
1 CVE
Antivirus For Mac
antivirus_for_mac
1 CVE
Vpn Proxy One Pro
vpn_proxy_one_pro
1 CVE
Txone Stellarone
txone_stellarone
1 CVE
Antivirus+ Security 2022
antivirus+_security_2022
1 CVE
Internet Security 2022
internet_security_2022
1 CVE
Premium Security 2022
premium_security_2022
1 CVE
Antivirus+ Security 2023
antivirus+_security_2023
1 CVE
Internet Security 2023
internet_security_2023
1 CVE
Premium Security 2023
premium_security_2023
1 CVE

CVEs (559)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-10514
1Trendmicro
4Antivirus + Security
Internet SecurityMaximum Security+1 more
Nov 21, 2024
Aug 30, 2018
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
A Missing Impersonation Privilege Escalation vulnerability in Trend Micro Security 2018 (Consumer) products could allow a local attacker to escalate privileges on vulnerable installations. An attacker must first obtain t...Show more
A Missing Impersonation Privilege Escalation vulnerability in Trend Micro Security 2018 (Consumer) products could allow a local attacker to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit the vulnerability.Show less
CVE-2018-10513
1Trendmicro
4Antivirus + Security
Internet SecurityMaximum Security+1 more
Nov 21, 2024
Aug 30, 2018
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
A Deserialization of Untrusted Data Privilege Escalation vulnerability in Trend Micro Security 2018 (Consumer) products could allow a local attacker to escalate privileges on vulnerable installations. An attacker must fi...Show more
A Deserialization of Untrusted Data Privilege Escalation vulnerability in Trend Micro Security 2018 (Consumer) products could allow a local attacker to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit the vulnerability.Show less
CVE-2018-10512
1Trendmicro
1Control Manager
Nov 21, 2024
Aug 15, 2018
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
A vulnerability in Trend Micro Control Manager (versions 6.0 and 7.0) could allow an attacker to manipulate a reverse proxy .dll on vulnerable installations, which may lead to a denial of server (DoS).
CVE-2018-10511
1Trendmicro
1Control Manager
Nov 21, 2024
Aug 15, 2018
N/A· v4
10.0 CRITICAL· v3
6.4 MEDIUM· v2
A vulnerability in Trend Micro Control Manager (versions 6.0 and 7.0) could allow an attacker to conduct a server-side request forgery (SSRF) attack on vulnerable installations.
CVE-2018-10510
1Trendmicro
1Control Manager
Nov 21, 2024
Aug 15, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
A Directory Traversal Remote Code Execution vulnerability in Trend Micro Control Manager (versions 6.0 and 7.0) could allow an attacker to execute arbitrary code on vulnerable installations.
CVE-2018-3608
1Trendmicro
6Antivirus + Security
Internet SecurityMaximum Security+3 more
Nov 21, 2024
Jul 6, 2018
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
A vulnerability in Trend Micro Maximum Security's (Consumer) 2018 (versions 12.0.1191 and below) User-Mode Hooking (UMH) driver could allow an attacker to create a specially crafted packet that could alter a vulnerable s...Show more
A vulnerability in Trend Micro Maximum Security's (Consumer) 2018 (versions 12.0.1191 and below) User-Mode Hooking (UMH) driver could allow an attacker to create a specially crafted packet that could alter a vulnerable system in such a way that malicious code could be injected into other processes.Show less
CVE-2018-10509
1Trendmicro
1Officescan
Nov 21, 2024
Jun 12, 2018
N/A· v4
8.8 HIGH· v3
4.0 MEDIUM· v2
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to exploit it via a Browser Refresh attack on vulnerable installations. An attacker must be using a AD logon user account in order to explo...Show more
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to exploit it via a Browser Refresh attack on vulnerable installations. An attacker must be using a AD logon user account in order to exploit this vulnerability.Show less
CVE-2018-10508
1Trendmicro
1Officescan
Nov 21, 2024
Jun 12, 2018
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to use a specially crafted URL to elevate account permissions on vulnerable installations. An attacker must already have at least guest pri...Show more
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to use a specially crafted URL to elevate account permissions on vulnerable installations. An attacker must already have at least guest privileges in order to exploit this vulnerability.Show less
CVE-2018-10507
1Trendmicro
1Officescan
Nov 21, 2024
Jun 12, 2018
N/A· v4
4.4 MEDIUM· v3
2.1 LOW· v2
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to take a series of steps to bypass or render the OfficeScan Unauthorized Change Prevention inoperable on vulnerable installations. An atta...Show more
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to take a series of steps to bypass or render the OfficeScan Unauthorized Change Prevention inoperable on vulnerable installations. An attacker must already have administrator privileges in order to exploit this vulnerability.Show less
CVE-2018-10506
1Trendmicro
1Officescan
Nov 21, 2024
Jun 8, 2018
N/A· v4
4.7 MEDIUM· v3
1.9 LOW· v2
A out-of-bounds read information disclosure vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within the proc...Show more
A out-of-bounds read information disclosure vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within the processing of IOCTL 0x220004 by the TMWFP driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Show less
CVE-2018-10505
1Trendmicro
1Officescan
Nov 21, 2024
Jun 8, 2018
N/A· v4
6.3 MEDIUM· v3
5.4 MEDIUM· v2
A pool corruption privilege escalation vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within the processing of IOCTL...Show more
A pool corruption privilege escalation vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within the processing of IOCTL 0x220008 in the TMWFP driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Show less
CVE-2018-10359
1Trendmicro
1Officescan
Nov 21, 2024
Jun 8, 2018
N/A· v4
6.3 MEDIUM· v3
5.4 MEDIUM· v2
A pool corruption privilege escalation vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within the processing of IOCTL...Show more
A pool corruption privilege escalation vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within the processing of IOCTL 0x220078 in the TMWFP driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Show less
CVE-2018-10358
1Trendmicro
1Officescan
Nov 21, 2024
Jun 8, 2018
N/A· v4
6.3 MEDIUM· v3
5.4 MEDIUM· v2
A pool corruption privilege escalation vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within the processing of IOCTL...Show more
A pool corruption privilege escalation vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within the processing of IOCTL 0x2200B4 in the TMWFP driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Show less
CVE-2018-6237
1Trendmicro
1Smart Protection Server
Nov 21, 2024
May 25, 2018
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
A vulnerability in Trend Micro Smart Protection Server (Standalone) 3.x could allow an unauthenticated remote attacker to manipulate the product to send a large number of specially crafted HTTP requests to potentially ca...Show more
A vulnerability in Trend Micro Smart Protection Server (Standalone) 3.x could allow an unauthenticated remote attacker to manipulate the product to send a large number of specially crafted HTTP requests to potentially cause the file system to fill up, eventually causing a denial of service (DoS) situation.Show less
CVE-2018-6236
1Trendmicro
4Antivirus+
Internet SecurityMaximum Security+1 more
Nov 21, 2024
May 25, 2018
N/A· v4
7.0 HIGH· v3
6.9 MEDIUM· v2
A Time-of-Check Time-of-Use privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processi...Show more
A Time-of-Check Time-of-Use privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x222813 by the tmusa driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Show less
CVE-2018-6235
1Trendmicro
4Antivirus+
Internet SecurityMaximum Security+1 more
Nov 21, 2024
May 25, 2018
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
An Out-of-Bounds write privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of...Show more
An Out-of-Bounds write privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Show less
CVE-2018-6234
1Trendmicro
4Antivirus+
Internet SecurityMaximum Security+1 more
Nov 21, 2024
May 25, 2018
N/A· v4
5.5 MEDIUM· v3
2.1 LOW· v2
An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within p...Show more
An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Show less
CVE-2018-6233
1Trendmicro
4Antivirus+
Internet SecurityMaximum Security+1 more
Nov 21, 2024
May 25, 2018
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
A buffer overflow privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCT...Show more
A buffer overflow privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x222060 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Show less
CVE-2018-6232
1Trendmicro
4Antivirus+
Internet SecurityMaximum Security+1 more
Nov 21, 2024
May 25, 2018
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
A buffer overflow privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCT...Show more
A buffer overflow privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x22205C by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Show less
CVE-2018-10350
1Trendmicro
1Smart Protection Server
Nov 21, 2024
May 25, 2018
N/A· v4
8.8 HIGH· v3
9.0 HIGH· v2
A SQL injection remote code execution vulnerability in Trend Micro Smart Protection Server (Standalone) 3.x could allow a remote attacker to execute arbitrary code on vulnerable installations due to a flaw within the han...Show more
A SQL injection remote code execution vulnerability in Trend Micro Smart Protection Server (Standalone) 3.x could allow a remote attacker to execute arbitrary code on vulnerable installations due to a flaw within the handling of parameters provided to wcs\_bwlists\_handler.php. Authentication is required in order to exploit this vulnerability.Show less