Trendmicro Deep Security — known CVE vulnerabilities
Every CVE whose affected-product data names Trendmicro Deep Security, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2023-52337 — CVSS 7.8 (high): An improper access control vulnerability in Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent…
CVE-2023-52338 — CVSS 7.8 (high): A link following vulnerability in the Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could…
CVE-2019-15626 — CVSS 7.5 (high): The Deep Security Manager application (Versions 10.0, 11.0 and 12.0), when configured in a certain way, may transmit initial LDAP…
CVE-2019-15627 — CVSS 7.1 (high): Versions 10.0, 11.0 and 12.0 of the Trend Micro Deep Security Agent are vulnerable to an arbitrary file delete attack, which may lead to…
CVE-2018-6218 — CVSS 7.0 (high): A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module (UMH) could allow an attacker to run arbitrary code on a vulnerable…
CVE-2020-8607 — CVSS 6.7 (medium): An input validation vulnerability found in multiple Trend Micro products utilizing a particular version of a specific rootkit protection…
CVE-2021-25252 — CVSS 5.5 (medium): Trend Micro's Virus Scan API (VSAPI) and Advanced Threat Scan Engine (ATSE) - are vulnerable to a memory exhaustion vulnerability that may…