Trendmicro Mobile Security — known CVE vulnerabilities
Every CVE whose affected-product data names Trendmicro Mobile Security, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (21)
CVE-2019-19690 — CVSS 9.8 (critical): Trend Micro Mobile Security for Android (Consumer) versions 10.3.1 and below on Android 8.0+ has an issue in which an attacker could bypass…
CVE-2017-14080 — CVSS 9.8 (critical): Authentication bypass vulnerability in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allows attackers to access a…
CVE-2017-14078 — CVSS 9.8 (critical): SQL Injection vulnerabilities in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to execute…
CVE-2023-32521 — CVSS 9.1 (critical): A path traversal exists in a specific service dll of Trend Micro Mobile Security (Enterprise) 9.8 SP5 which could allow an unauthenticated…
CVE-2022-40980 — CVSS 9.1 (critical): A potential unathenticated file deletion vulnerabilty on Trend Micro Mobile Security for Enterprise 9.8 SP5 could allow an attacker with…
CVE-2023-32528 — CVSS 8.8 (high): Trend Micro Mobile Security (Enterprise) 9.8 SP5 contains vulnerable .php files that could allow a remote attacker to execute arbitrary…
CVE-2017-14079 — CVSS 8.8 (high): Unrestricted file uploads in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to execute…
CVE-2017-14081 — CVSS 8.8 (high): Proxy command injection vulnerabilities in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to…
CVE-2023-32523 — CVSS 8.8 (high): Affected versions of Trend Micro Mobile Security (Enterprise) 9.8 SP5 contain some widgets that would allow a remote user to bypass…
CVE-2023-32524 — CVSS 8.8 (high): Affected versions of Trend Micro Mobile Security (Enterprise) 9.8 SP5 contain some widgets that would allow a remote user to bypass…
CVE-2023-32527 — CVSS 8.8 (high): Trend Micro Mobile Security (Enterprise) 9.8 SP5 contains vulnerable .php files that could allow a remote attacker to execute arbitrary…
CVE-2023-32522 — CVSS 8.1 (high): A path traversal exists in a specific dll of Trend Micro Mobile Security (Enterprise) 9.8 SP5 which could allow an authenticated remote…
CVE-2023-35695 — CVSS 7.5 (high): A remote attacker could leverage a vulnerability in Trend Micro Mobile Security (Enterprise) 9.8 SP5 to download a particular log file…
CVE-2017-14082 — CVSS 7.5 (high): An uninitialized pointer information disclosure vulnerability in Trend Micro Mobile Security (Enterprise) versions 9.7 and below could…
CVE-2019-14688 — CVSS 7.0 (high): Trend Micro has repackaged installers for several Trend Micro products that were found to utilize a version of an install package that had…
CVE-2023-32526 — CVSS 6.5 (medium): Trend Micro Mobile Security (Enterprise) 9.8 SP5 contains widget vulnerabilities that could allow a remote attacker to create arbitrary…
CVE-2023-32525 — CVSS 6.5 (medium): Trend Micro Mobile Security (Enterprise) 9.8 SP5 contains widget vulnerabilities that could allow a remote attacker to create arbitrary…
CVE-2023-41178 — CVSS 6.1 (medium): Reflected cross-site scripting (XSS) vulnerabilities in Trend Micro Mobile Security (Enterprise) could allow an exploit against an…
CVE-2023-41176 — CVSS 6.1 (medium): Reflected cross-site scripting (XSS) vulnerabilities in Trend Micro Mobile Security (Enterprise) could allow an exploit against an…
CVE-2023-41177 — CVSS 6.1 (medium): Reflected cross-site scripting (XSS) vulnerabilities in Trend Micro Mobile Security (Enterprise) could allow an exploit against an…
CVE-2016-9319 — CVSS 5.9 (medium): There is Missing SSL Certificate Validation in the Trend Micro Enterprise Mobile Security Android Application before 9.7.1193, aka VRTS-398.