Vulnerabilities > Trendmicro > High

DATE CVE VULNERABILITY TITLE RISK
2021-10-21 CVE-2021-42102 Uncontrolled Search Path Element vulnerability in Trendmicro Apex ONE 2019
An uncontrolled search path element vulnerabilities in Trend Micro Apex One and Apex One as a Service agents could allow a local attacker to escalate privileges on affected installations.
local
low complexity
trendmicro CWE-427
7.8
2021-10-21 CVE-2021-42103 Uncontrolled Search Path Element vulnerability in Trendmicro Apex ONE 2019
An uncontrolled search path element vulnerabilities in Trend Micro Apex One and Apex One as a Service could allow a local attacker to escalate privileges on affected installations.
local
low complexity
trendmicro CWE-427
7.8
2021-10-21 CVE-2021-42104 Improper Privilege Management vulnerability in Trendmicro products
Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services could allow a local attacker to escalate privileges on affected installations.
local
low complexity
trendmicro CWE-269
7.8
2021-10-21 CVE-2021-42105 Improper Privilege Management vulnerability in Trendmicro products
Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services could allow a local attacker to escalate privileges on affected installations.
local
low complexity
trendmicro CWE-269
7.8
2021-10-21 CVE-2021-42106 Improper Privilege Management vulnerability in Trendmicro products
Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services could allow a local attacker to escalate privileges on affected installations.
local
low complexity
trendmicro CWE-269
7.8
2021-10-21 CVE-2021-42107 Improper Privilege Management vulnerability in Trendmicro products
Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services could allow a local attacker to escalate privileges on affected installations.
local
low complexity
trendmicro CWE-269
7.8
2021-10-21 CVE-2021-42108 Improper Privilege Management vulnerability in Trendmicro products
Unnecessary privilege vulnerabilities in the Web Console of Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security 10.0 SP1 could allow a local attacker to escalate privileges on affected installations.
local
low complexity
trendmicro CWE-269
7.8
2021-09-29 CVE-2021-32466 Uncontrolled Search Path Element vulnerability in Trendmicro Housecall for Home Networks
An uncontrolled search path element privilege escalation vulnerability in Trend Micro HouseCall for Home Networks version 5.3.1225 and below could allow an attacker to escalate privileges by placing a custom crafted file in a specific directory to load a malicious library.
local
high complexity
trendmicro CWE-427
7.0
2021-09-06 CVE-2021-36744 Link Following vulnerability in Trendmicro products
Trend Micro Security (Consumer) 2021 and 2020 are vulnerable to a directory junction vulnerability which could allow an attacker to exploit the system to escalate privileges and create a denial of service.
local
low complexity
trendmicro CWE-59
7.8
2021-08-04 CVE-2021-32464 Incorrect Default Permissions vulnerability in Trendmicro Apex ONE and Officescan
An incorrect permission assignment privilege escalation vulnerability in Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security Services could allow an attacker to modify a specific script before it is executed.
local
low complexity
trendmicro CWE-276
7.8