Vulnerabilities > CVE-2021-23139 - NULL Pointer Dereference vulnerability in Trendmicro products

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

trendmicro

CWE-476

NVD

Published: 2021-10-21

Updated: 2021-10-26

Summary

A null pointer vulnerability in Trend Micro Apex One and Worry-Free Business Security 10.0 SP1 could allow an attacker to crash the CGI program on affected installations.

Vulnerable Configurations

Part	Description	Count
Application	Trendmicro Trendmicro Apex ONE 2019 Trendmicro Worry Free Business Security 10.0 Trendmicro Worry Free Business Security Services -	4
OS	Microsoft Microsoft Windows -	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://success.trendmicro.com/solution/000289230
https://success.trendmicro.com/solution/000289229