Vulnerabilities > Trendmicro > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-20 | CVE-2021-32463 | Incorrect Permission Assignment for Critical Resource vulnerability in Trendmicro Apex ONE and Worry-Free Business Security An incorrect permission assignment denial-of-service vulnerability in Trend Micro Apex One, Apex One as a Service (SaaS), Worry-Free Business Security 10.0 SP1 and Worry-Free Servgices could allow a local attacker to escalate privileges and delete files with system privileges on affected installations. | 7.2 |
| 2021-07-08 | CVE-2021-32461 | Incorrect Conversion between Numeric Types vulnerability in Trendmicro Password Manager Trend Micro Password Manager (Consumer) version 5.0.0.1217 and below is vulnerable to an Integer Truncation Privilege Escalation vulnerability which could allow a local attacker to trigger a buffer overflow and escalate privileges on affected installations. | 7.2 |
| 2021-06-03 | CVE-2021-32460 | Incorrect Authorization vulnerability in Trendmicro Maximum Security 2021 17.0 The Trend Micro Maximum Security 2021 (v17) consumer product is vulnerable to an improper access control vulnerability in the installer which could allow a local attacker to escalate privileges on a target machine. | 7.2 |
| 2021-05-27 | CVE-2021-32458 | Out-of-bounds Write vulnerability in Trendmicro Home Network Security Trend Micro Home Network Security version 6.6.604 and earlier is vulnerable to an iotcl stack-based buffer overflow vulnerability which could allow an attacker to issue a specially crafted iotcl which could lead to code execution on affected devices. | 7.2 |
| 2021-05-05 | CVE-2021-31518 | Unspecified vulnerability in Trendmicro Home Network Security Trend Micro Home Network Security 6.5.599 and earlier is vulnerable to a file-parsing vulnerability which could allow an attacker to exploit the vulnerability and cause a denial-of-service to the device. | 7.8 |
| 2021-05-05 | CVE-2021-31517 | Unspecified vulnerability in Trendmicro Home Network Security Trend Micro Home Network Security 6.5.599 and earlier is vulnerable to a file-parsing vulnerability which could allow an attacker to exploit the vulnerability and cause a denial-of-service to the device. | 7.8 |
| 2021-04-13 | CVE-2021-28645 | Incorrect Permission Assignment for Critical Resource vulnerability in Trendmicro Apex ONE and Officescan An incorrect permission assignment vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local attacker to escalate privileges on affected installations. | 7.2 |
| 2021-04-13 | CVE-2021-25253 | Improper Privilege Management vulnerability in Trendmicro Apex ONE and Officescan An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource used by the service could allow a local attacker to escalate privileges on affected installations. | 7.2 |
| 2021-04-13 | CVE-2021-25250 | Improper Privilege Management vulnerability in Trendmicro Apex ONE and Officescan An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a sensitive file could allow a local attacker to escalate privileges on affected installations. | 7.2 |
| 2021-02-04 | CVE-2021-25249 | Out-of-bounds Write vulnerability in Trendmicro Apex One, Officescan and Worry-Free Business Security An out-of-bounds write information disclosure vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security (10.0 SP1 and Services) could allow a local attacker to escalate privileges on affected installations. | 7.2 |