Every CVE whose affected-product data names Trendmicro Scanmail, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2017-14090 — CVSS 9.1 (critical): A vulnerability in Trend Micro ScanMail for Exchange 12.0 exists in which some communications to the update servers are not encrypted.
CVE-2017-14092 — CVSS 8.8 (high): The absence of Anti-CSRF tokens in Trend Micro ScanMail for Exchange 12.0 web interface forms could allow an attacker to submit…
CVE-2017-14091 — CVSS 7.5 (high): A vulnerability in Trend Micro ScanMail for Exchange 12.0 exists in which certain specific installations that utilize a uncommon feature -…
CVE-2019-14688 — CVSS 7.0 (high): Trend Micro has repackaged installers for several Trend Micro products that were found to utilize a version of an install package that had…
CVE-2017-14093 — CVSS 6.1 (medium): The Log Query and Quarantine Query pages in Trend Micro ScanMail for Exchange 12.0 are vulnerable to cross site scripting (XSS) attacks.
CVE-2021-25252 — CVSS 5.5 (medium): Trend Micro's Virus Scan API (VSAPI) and Advanced Threat Scan Engine (ATSE) - are vulnerable to a memory exhaustion vulnerability that may…