Trendmicro Deep Security Agent — known CVE vulnerabilities
Every CVE whose affected-product data names Trendmicro Deep Security Agent, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (15)
CVE-2024-51503 — CVSS 8.0 (high): A security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20 Agent could allow an attacker to escalate…
CVE-2022-23120 — CVSS 7.8 (high): A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could…
CVE-2025-30641 — CVSS 7.8 (high): A link following vulnerability in the anti-malware solution portion of Trend Micro Deep Security 20.0 agents could allow a local attacker…
CVE-2025-30640 — CVSS 7.8 (high): A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local attacker to escalate privileges on affected…
CVE-2022-40710 — CVSS 7.8 (high): A link following vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local…
CVE-2023-52337 — CVSS 7.8 (high): An improper access control vulnerability in Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent…
CVE-2023-52338 — CVSS 7.8 (high): A link following vulnerability in the Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could…
CVE-2024-48903 — CVSS 7.8 (high): An improper access control vulnerability in Trend Micro Deep Security Agent 20 could allow a local attacker to escalate privileges on…
CVE-2024-36358 — CVSS 7.8 (high): A link following vulnerability in Trend Micro Deep Security 20.x agents below build 20.0.1-3180 could allow a local attacker to escalate…
CVE-2022-23119 — CVSS 7.5 (high): A directory traversal vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below…
CVE-2024-55955 — CVSS 6.7 (medium): An incorrect permissions assignment vulnerability in Trend Micro Deep Security 20.0 agents between versions 20.0.1-9400 and 20.0.1-23340…
CVE-2025-30642 — CVSS 5.5 (medium): A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local attacker to create a denial of service (DoS)…
CVE-2022-40709 — CVSS 3.3 (low): An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local…
CVE-2022-40708 — CVSS 3.3 (low): An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local…
CVE-2022-40707 — CVSS 3.3 (low): An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local…