Every CVE whose affected-product data names Trendmicro Apex One, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (180)
CVE-2025-71210 — CVSS 9.8 (critical): A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands…
CVE-2019-18189 — CVSS 9.8 (critical): A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (11.0, XG) and Worry-Free Business Security (9.5, 10.0) may allow…
CVE-2025-71211 — CVSS 9.8 (critical): A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands…
CVE-2023-25143 — CVSS 9.8 (critical): An uncontrolled search path element vulnerability in the Trend Micro Apex One Server installer could allow an attacker to achieve a remote…
CVE-2023-32557 — CVSS 9.8 (critical): A path traversal vulnerability in the Trend Micro Apex One and Apex One as a Service could allow an unauthenticated attacker to upload an…
CVE-2022-40144 — CVSS 9.8 (critical): A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product's login…
CVE-2020-8598 — CVSS 9.8 (critical): Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server contains a vulnerable service DLL file…
CVE-2025-54987 — CVSS 9.4 (critical): A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker to upload malicious…
CVE-2023-0587 — CVSS 9.1 (critical): A file upload vulnerability in exists in Trend Micro Apex One server build 11110. Using a malformed Content-Length header in an HTTP PUT…
CVE-2022-41746 — CVSS 9.1 (critical): A forced browsing vulnerability in Trend Micro Apex One could allow an attacker with access to the Apex One console on affected…
CVE-2025-49155 — CVSS 8.8 (high): An uncontrolled search path vulnerability in the Trend Micro Apex One Data Loss Prevention module could allow an attacker to inject…
CVE-2021-32465 — CVSS 8.8 (high): An incorrect permission preservation vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a…
CVE-2025-49154 — CVSS 8.7 (high): An insecure access control vulnerability in Trend Micro Apex One and Trend Micro Worry-Free Business Security could allow a local attacker…
CVE-2025-49157 — CVSS 7.8 (high): A link following vulnerability in the Trend Micro Apex One Damage Cleanup Engine could allow a local attacker to escalation privileges on…
CVE-2020-28572 — CVSS 7.8 (high): A vulnerability in Trend Micro Apex One could allow an unprivileged user to abuse the product installer to reinstall the agent with…
CVE-2026-45208 — CVSS 7.8 (high): A time-of-check time-of-use vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected…
CVE-2026-45207 — CVSS 7.8 (high): An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations…
CVE-2020-24556 — CVSS 7.8 (high): A vulnerability in Trend Micro Apex One, OfficeScan XG SP1, Worry-Free Business Security 10 SP1 and Worry-Free Business Security Services…
CVE-2020-24559 — CVSS 7.8 (high): A vulnerability in Trend Micro Apex One, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services on macOS may allow…
CVE-2020-24563 — CVSS 7.8 (high): A vulnerability in Trend Micro Apex One may allow a local attacker to manipulate the process of the security agent unload option (if…
CVE-2026-45206 — CVSS 7.8 (high): An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations…
CVE-2026-34930 — CVSS 7.8 (high): An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations…
CVE-2026-34929 — CVSS 7.8 (high): An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations…
CVE-2026-34928 — CVSS 7.8 (high): An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations…
CVE-2026-34927 — CVSS 7.8 (high): An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations…
CVE-2020-25773 — CVSS 7.8 (high): A vulnerability in the Trend Micro Apex One ServerMigrationTool component could allow an attacker to execute arbitrary code on affected…
CVE-2023-52093 — CVSS 7.8 (high): An exposed dangerous function vulnerability in the Trend Micro Apex One agent could allow a local attacker to escalate privileges on…
CVE-2025-71217 — CVSS 7.8 (high): An origin validation error vulnerability in the Trend Micro Apex One (mac) agent self-protection mechanism could allow a local attacker to…
CVE-2025-71216 — CVSS 7.8 (high): A time-of-check time-of-use vulnerability in the Trend Micro Apex One (mac) agent cache mechanism could allow a local attacker to escalate…
CVE-2025-71214 — CVSS 7.8 (high): An origin validation error vulnerability in the Trend Micro Apex One (mac) agent iCore service could allow a local attacker to escalate…
CVE-2025-71213 — CVSS 7.8 (high): An origin validation error vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected…
CVE-2025-71212 — CVSS 7.8 (high): A link following vulnerability in the Trend Micro Apex One scan engine could allow a local attacker to escalate privileges on affected…
CVE-2022-44652 — CVSS 7.8 (high): An improper handling of exceptional conditions vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker…
CVE-2022-44653 — CVSS 7.8 (high): A security agent directory traversal vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to…
CVE-2022-45798 — CVSS 7.8 (high): A link following vulnerability in the Damage Cleanup Engine component of Trend Micro Apex One and Trend Micro Apex One as a Service could…
CVE-2023-25144 — CVSS 7.8 (high): An improper access control vulnerability in the Trend Micro Apex One agent could allow a local attacker to gain elevated privileges and…
CVE-2023-25145 — CVSS 7.8 (high): A link following vulnerability in the scanning function of Trend Micro Apex One agent could allow a local attacker to escalate privileges…
CVE-2023-25146 — CVSS 7.8 (high): A security agent link following vulnerability in the Trend Micro Apex One agent could allow a local attacker to quarantine a file, delete…
CVE-2023-25148 — CVSS 7.8 (high): A security agent link following vulnerability in Trend Micro Apex One could allow a local attacker to exploit the vulnerability by changing…
CVE-2024-36304 — CVSS 7.8 (high): A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to…
CVE-2024-36303 — CVSS 7.8 (high): An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on…
CVE-2024-36302 — CVSS 7.8 (high): An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on…
CVE-2023-52094 — CVSS 7.8 (high): An updater link following vulnerability in the Trend Micro Apex One agent could allow a local attacker to abuse the updater to delete an…
CVE-2023-34144 — CVSS 7.8 (high): An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local attacker to…
CVE-2023-34145 — CVSS 7.8 (high): An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local attacker to…
CVE-2023-34146 — CVSS 7.8 (high): An exposed dangerous function vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local…
CVE-2023-34147 — CVSS 7.8 (high): An exposed dangerous function vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local…
CVE-2023-34148 — CVSS 7.8 (high): An exposed dangerous function vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local…
CVE-2023-47192 — CVSS 7.8 (high): An agent link vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on affected…
CVE-2023-47193 — CVSS 7.8 (high): An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on…
CVE-2023-47194 — CVSS 7.8 (high): An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on…
CVE-2023-47195 — CVSS 7.8 (high): An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on…
CVE-2023-47196 — CVSS 7.8 (high): An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on…
CVE-2023-47197 — CVSS 7.8 (high): An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on…
CVE-2023-47198 — CVSS 7.8 (high): An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on…
CVE-2023-47199 — CVSS 7.8 (high): An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on…
CVE-2023-47200 — CVSS 7.8 (high): A plug-in manager origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate…
CVE-2023-47201 — CVSS 7.8 (high): A plug-in manager origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate…
CVE-2023-47202 — CVSS 7.8 (high): A local file inclusion vulnerability on the Trend Micro Apex One management server could allow a local attacker to escalate privileges on…
CVE-2023-52090 — CVSS 7.8 (high): A security agent link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected…
CVE-2023-52091 — CVSS 7.8 (high): An anti-spyware engine link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected…
CVE-2023-52092 — CVSS 7.8 (high): A security agent link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected…
CVE-2024-55917 — CVSS 7.8 (high): An origin validation error vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected…
CVE-2024-55632 — CVSS 7.8 (high): A security agent link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected…
CVE-2024-55631 — CVSS 7.8 (high): An engine link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected…
CVE-2021-25249 — CVSS 7.8 (high): An out-of-bounds write information disclosure vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free…
CVE-2021-25250 — CVSS 7.8 (high): An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a sensitive…
CVE-2024-52050 — CVSS 7.8 (high): A LogServer arbitrary file creation vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected…
CVE-2021-25253 — CVSS 7.8 (high): An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource…
CVE-2021-28645 — CVSS 7.8 (high): An incorrect permission assignment vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local…
CVE-2024-52049 — CVSS 7.8 (high): A LogServer link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected…
CVE-2021-32463 — CVSS 7.8 (high): An incorrect permission assignment denial-of-service vulnerability in Trend Micro Apex One, Apex One as a Service (SaaS), Worry-Free…
CVE-2021-32464 — CVSS 7.8 (high): An incorrect permission assignment privilege escalation vulnerability in Trend Micro Apex One, Apex One as a Service and Worry-Free…
CVE-2024-52048 — CVSS 7.8 (high): A LogServer link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected…
CVE-2021-42011 — CVSS 7.8 (high): An incorrect permission assignment vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to load a…
CVE-2021-42012 — CVSS 7.8 (high): A stack-based buffer overflow vulnerability in Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security 10.0 SP1 could…
CVE-2021-42101 — CVSS 7.8 (high): An uncontrolled search path element vulnerabilities in Trend Micro Apex One and Apex One as a Service could allow a local attacker to…
CVE-2021-42102 — CVSS 7.8 (high): An uncontrolled search path element vulnerabilities in Trend Micro Apex One and Apex One as a Service agents could allow a local attacker…
CVE-2021-42103 — CVSS 7.8 (high): An uncontrolled search path element vulnerabilities in Trend Micro Apex One and Apex One as a Service could allow a local attacker to…
CVE-2021-42104 — CVSS 7.8 (high): Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free…
CVE-2021-42105 — CVSS 7.8 (high): Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free…
CVE-2021-42106 — CVSS 7.8 (high): Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free…
CVE-2021-42107 — CVSS 7.8 (high): Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free…
CVE-2021-42108 — CVSS 7.8 (high): Unnecessary privilege vulnerabilities in the Web Console of Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security…
CVE-2021-45231 — CVSS 7.8 (high): A link following privilege escalation vulnerability in Trend Micro Apex One (on-prem and SaaS) and Trend Micro Worry-Free Business Security…
CVE-2021-45440 — CVSS 7.8 (high): A unnecessary privilege vulnerability in Trend Micro Apex One and Trend Micro Worry-Free Business Security 10.0 SP1 (on-prem versions only)…
CVE-2021-45441 — CVSS 7.8 (high): A origin validation error vulnerability in Trend Micro Apex One (on-prem and SaaS) could allow a local attacker drop and manipulate a…
CVE-2022-24679 — CVSS 7.8 (high): A security link following local privilege escalation vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service, Trend Micro…
CVE-2022-24680 — CVSS 7.8 (high): A security link following local privilege escalation vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service, Trend Micro…
CVE-2022-30700 — CVSS 7.8 (high): An incorrect permission assignment vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to load a…
CVE-2022-30701 — CVSS 7.8 (high): An uncontrolled search path element vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to craft a…
CVE-2022-36336 — CVSS 7.8 (high): A link following vulnerability in the scanning function of Trend Micro Apex One and Worry-Free Business Security agents could allow a local…
CVE-2022-40142 — CVSS 7.8 (high): A security link following local privilege escalation vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service agents…
CVE-2022-41747 — CVSS 7.8 (high): An improper certification validation vulnerability in Trend Micro Apex One agents could allow a local attacker to load a DLL file with…
CVE-2022-41749 — CVSS 7.8 (high): An origin validation error vulnerability in Trend Micro Apex One agents could allow a local attacker to escalate privileges on affected…
CVE-2024-37289 — CVSS 7.8 (high): An improper access control vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected…
CVE-2024-36305 — CVSS 7.8 (high): A security agent link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected…
CVE-2022-44649 — CVSS 7.8 (high): An out-of-bounds access vulnerability in the Unauthorized Change Prevention service of Trend Micro Apex One and Apex One as a Service could…
CVE-2022-44650 — CVSS 7.8 (high): A memory corruption vulnerability in the Unauthorized Change Prevention service of Trend Micro Apex One and Apex One as a Service could…
CVE-2022-24678 — CVSS 7.5 (high): An security agent resource exhaustion denial-of-service vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service, Trend…
CVE-2022-40141 — CVSS 7.5 (high): A vulnerability in Trend Micro Apex One and Apex One as a Service could allow an attacker to intercept and decode certain communication…
CVE-2019-9489 — CVSS 7.5 (high): A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (versions XG and 11.0), and Worry-Free Business Security (versions…
CVE-2022-44654 — CVSS 7.5 (high): Affected builds of Trend Micro Apex One and Apex One as a Service contain a monitor engine component that is complied without the /SAFESEH…
CVE-2024-39753 — CVSS 7.5 (high): An modOSCE SQL Injection vulnerability in Trend Micro Apex One could allow a remote attacker to execute arbitrary code on affected…
CVE-2019-18188 — CVSS 7.5 (high): Trend Micro Apex One could be exploited by an attacker utilizing a command injection vulnerability to extract files from an arbitrary zip…
CVE-2024-52047 — CVSS 7.5 (high): A widget local file inclusion vulnerability in Trend Micro Apex One could allow a remote attacker to execute arbitrary code on affected…
CVE-2021-23139 — CVSS 7.5 (high): A null pointer vulnerability in Trend Micro Apex One and Worry-Free Business Security 10.0 SP1 could allow an attacker to crash the CGI…
CVE-2020-8470 — CVSS 7.5 (high): Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server contains a vulnerable service DLL file…
CVE-2022-40143 — CVSS 7.3 (high): A link following local privilege escalation vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service servers could allow…
CVE-2024-58105 — CVSS 7.3 (high): A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could allow a local attacker to bypass existing…
CVE-2024-58104 — CVSS 7.3 (high): A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could allow a local attacker to bypass existing…
CVE-2022-45797 — CVSS 7.1 (high): An arbitrary file deletion vulnerability in the Damage Cleanup Engine component of Trend Micro Apex One and Trend Micro Apex One as a…
CVE-2021-44024 — CVSS 7.1 (high): A link following denial-of-service vulnerability in Trend Micro Apex One (on-prem and SaaS) and Trend Micro Worry-Free Business Security…
CVE-2021-45442 — CVSS 7.1 (high): A link following denial-of-service vulnerability in Trend Micro Worry-Free Business Security (on prem only) could allow a local attacker to…
CVE-2020-24558 — CVSS 7.1 (high): A vulnerability in an Trend Micro Apex One, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services dll may allow…
CVE-2025-49156 — CVSS 7.0 (high): A link following vulnerability in the Trend Micro Apex One scan engine could allow a local attacker to escalation privileges on affected…
CVE-2023-32554 — CVSS 7.0 (high): A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to…
CVE-2023-32555 — CVSS 7.0 (high): A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to…
CVE-2022-44651 — CVSS 7.0 (high): A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to…
CVE-2022-41744 — CVSS 7.0 (high): A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One Vulnerability Protection integrated component could allow a local…
CVE-2022-41745 — CVSS 7.0 (high): An Out-of-Bounds access vulnerability in Trend Micro Apex One could allow a local attacker to create a specially crafted message to cause…
CVE-2025-71215 — CVSS 7.0 (high): A time-of-check time-of-use vulnerability in the Trend Micro Apex One (mac) agent iCore service signature verification could allow a local…
CVE-2022-41748 — CVSS 6.7 (medium): A registry permissions vulnerability in the Trend Micro Apex One Data Loss Prevention (DLP) module could allow a local attacker with…
CVE-2023-25147 — CVSS 6.7 (medium): An issue in the Trend Micro Apex One agent could allow an attacker who has previously acquired administrative rights via other means to…
CVE-2025-49158 — CVSS 6.7 (medium): An uncontrolled search path vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalation privileges…
CVE-2020-8607 — CVSS 6.7 (medium): An input validation vulnerability found in multiple Trend Micro products utilizing a particular version of a specific rootkit protection…
CVE-2021-25246 — CVSS 6.5 (medium): An improper access control information disclosure vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG SP1, and…
CVE-2024-36306 — CVSS 6.1 (medium): A link following vulnerability in the Trend Micro Apex One and Apex One as a Service Damage Cleanup Engine could allow a local attacker to…
CVE-2023-52330 — CVSS 6.1 (medium): A cross-site scripting vulnerability in Trend Micro Apex Central could allow a remote attacker to execute arbitrary code on affected…
CVE-2019-19692 — CVSS 6.1 (medium): Trend Micro Apex One (2019) is affected by a cross-site scripting (XSS) vulnerability on the product console. Note that the Japanese…
CVE-2021-28646 — CVSS 5.5 (medium): An insecure file permissions vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local…
CVE-2021-25252 — CVSS 5.5 (medium): Trend Micro's Virus Scan API (VSAPI) and Advanced Threat Scan Engine (ATSE) - are vulnerable to a memory exhaustion vulnerability that may…
CVE-2021-25248 — CVSS 5.5 (medium): An out-of-bounds read information disclosure vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free…
CVE-2023-30902 — CVSS 5.5 (medium): A privilege escalation vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to…
CVE-2022-44648 — CVSS 5.5 (medium): An Out-of-bounds read vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to disclose sensitive…
CVE-2023-32556 — CVSS 5.5 (medium): A link following vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to disclose…
CVE-2022-44647 — CVSS 5.5 (medium): An Out-of-bounds read vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to disclose sensitive…
CVE-2020-24564 — CVSS 5.5 (medium): An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive…
CVE-2020-25772 — CVSS 5.5 (medium): An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive…
CVE-2020-25771 — CVSS 5.5 (medium): An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive…
CVE-2020-25770 — CVSS 5.5 (medium): An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive…
CVE-2022-40140 — CVSS 5.5 (medium): An origin validation error vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to cause a…
CVE-2020-24565 — CVSS 5.5 (medium): An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive…
CVE-2021-44022 — CVSS 5.5 (medium): A reachable assertion vulnerability in Trend Micro Apex One could allow an attacker to crash the program on affected installations, leading…
CVE-2021-3848 — CVSS 5.5 (medium): An arbitrary file creation by privilege escalation vulnerability in Trend Micro Apex One, Apex One as a Service, Worry-Free Business…
CVE-2020-28582 — CVSS 5.3 (medium): An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an…
CVE-2020-28576 — CVSS 5.3 (medium): An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an…
CVE-2020-28573 — CVSS 5.3 (medium): An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an…
CVE-2020-28577 — CVSS 5.3 (medium): An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an…
CVE-2023-32553 — CVSS 5.3 (medium): An Improper access control vulnerability in Trend Micro Apex One and Apex One as a Service could allow an unauthenticated user under…
CVE-2023-32552 — CVSS 5.3 (medium): An Improper access control vulnerability in Trend Micro Apex One and Apex One as a Service could allow an unauthenticated user under…
CVE-2021-25243 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security…
CVE-2021-25242 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security…
CVE-2021-25241 — CVSS 5.3 (medium): A server-side request forgery (SSRF) information disclosure vulnerability in Trend Micro Apex One and Worry-Free Business Security 10.0 SP1…
CVE-2021-25240 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security…
CVE-2021-25239 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1…
CVE-2021-25237 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem) could allow an unauthenticated user to obtain information about…
CVE-2021-25235 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated…
CVE-2021-25234 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security…
CVE-2021-25233 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security…
CVE-2021-25232 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated…
CVE-2021-25231 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security…
CVE-2021-25230 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated…
CVE-2021-25229 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated…
CVE-2021-25228 — CVSS 5.3 (medium): An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security…
CVE-2020-28583 — CVSS 5.3 (medium): An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an…
CVE-2019-19691 — CVSS 4.9 (medium): A vulnerability in Trend Micro Apex One and OfficeScan XG could allow an attacker to expose a masked credential key by manipulating page…
CVE-2024-36307 — CVSS 4.7 (medium): A security agent link following vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to disclose…
CVE-2020-25774 — CVSS 4.3 (medium): A vulnerability in the Trend Micro Apex One ServerMigrationTool component could allow an attacker to trigger an out-of-bounds red…