Vulnerabilities > Trendmicro > Low

DATE CVE VULNERABILITY TITLE RISK
2022-09-28 CVE-2022-40709 Out-of-bounds Read vulnerability in Trendmicro Deep Security Agent 20.0
An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations.
local
low complexity
trendmicro CWE-125
3.3
2022-09-28 CVE-2022-40708 Out-of-bounds Read vulnerability in Trendmicro Deep Security Agent 20.0
An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations.
local
low complexity
trendmicro CWE-125
3.3
2022-09-28 CVE-2022-40707 Out-of-bounds Read vulnerability in Trendmicro Deep Security Agent 20.0
An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations.
local
low complexity
trendmicro CWE-125
3.3
2022-06-09 CVE-2022-30702 Out-of-bounds Read vulnerability in Trendmicro Security 2022
Trend Micro Security 2022 and 2021 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure vulnerability that could allow an attacker to disclose sensitive information on an affected machine.
local
low complexity
trendmicro CWE-125
2.1
2022-02-04 CVE-2022-23805 Out-of-bounds Read vulnerability in Trendmicro Worry-Free Business Security 10.0
A security out-of-bounds read information disclosure vulnerability in Trend Micro Worry-Free Business Security Server could allow a local attacker to send garbage data to a specific named pipe and crash the server.
local
low complexity
trendmicro CWE-125
3.6
2021-12-16 CVE-2021-44023 Link Following vulnerability in Trendmicro products
A link following denial-of-service (DoS) vulnerability in the Trend Micro Security (Consumer) 2021 familiy of products could allow an attacker to abuse the PC Health Checkup feature of the product to create symlinks that would allow modification of files which could lead to a denial-of-service.
local
low complexity
trendmicro CWE-59
3.6
2021-12-03 CVE-2021-44022 Reachable Assertion vulnerability in Trendmicro Apex ONE 2019
A reachable assertion vulnerability in Trend Micro Apex One could allow an attacker to crash the program on affected installations, leading to a denial-of-service (DoS).
local
low complexity
trendmicro CWE-617
2.1
2021-12-03 CVE-2021-43772 Files or Directories Accessible to External Parties vulnerability in Trendmicro products
Trend Micro Security 2021 v17.0 (Consumer) contains a vulnerability that allows files inside the protected folder to be modified without any detection.
local
low complexity
trendmicro CWE-552
2.1
2021-10-06 CVE-2021-3848 Unspecified vulnerability in Trendmicro Apex ONE and Worry-Free Business Security
An arbitrary file creation by privilege escalation vulnerability in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1, and Worry-Free Business Security Services could allow a local attacker to create an arbitrary file with higher privileges that could lead to a denial-of-service (DoS) on affected installations.
local
low complexity
trendmicro
2.1
2021-06-17 CVE-2021-31521 Cross-site Scripting vulnerability in Trendmicro Interscan web Security Virtual Appliance 6.5
Trend Micro InterScan Web Security Virtual Appliance version 6.5 was found to have a reflected cross-site scripting (XSS) vulnerability in the product's Captive Portal.
network
trendmicro CWE-79
3.5