Vulnerabilities > Trendmicro > Worry Free Business Security > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-04 | CVE-2021-25239 | Unspecified vulnerability in Trendmicro Apex One, Officescan and Worry-Free Business Security An improper access control vulnerability in Trend Micro Apex One (on-prem), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about x86 agent hotfixes. | 5.3 |
| 2021-02-04 | CVE-2021-25238 | Unspecified vulnerability in Trendmicro Officescan and Worry-Free Business Security An improper access control information disclosure vulnerability in Trend Micro OfficeScan XG SP1 and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about an agent's managing port. | 5.3 |
| 2021-02-04 | CVE-2021-25236 | Server-Side Request Forgery (SSRF) vulnerability in Trendmicro Officescan and Worry-Free Business Security A server-side request forgery (SSRF) information disclosure vulnerability in Trend Micro OfficeScan XG SP1 and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to locate online agents via a specific sweep. | 5.3 |
| 2021-02-04 | CVE-2021-25234 | Unspecified vulnerability in Trendmicro Apex One, Officescan and Worry-Free Business Security An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific notification configuration file. | 5.3 |
| 2021-02-04 | CVE-2021-25233 | Unspecified vulnerability in Trendmicro Apex One, Officescan and Worry-Free Business Security An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific configuration download file. | 5.3 |
| 2021-02-04 | CVE-2021-25231 | Unspecified vulnerability in Trendmicro Apex One, Officescan and Worry-Free Business Security An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific hotfix history file. | 5.3 |
| 2021-02-04 | CVE-2021-25228 | Unspecified vulnerability in Trendmicro Apex One, Officescan and Worry-Free Business Security An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about hotfix history. | 5.3 |
| 2016-06-19 | CVE-2016-1224 | Cross-site Scripting vulnerability in Trendmicro products CRLF injection vulnerability in Trend Micro Worry-Free Business Security Service 5.x and Worry-Free Business Security 9.0 allows remote attackers to inject arbitrary HTTP headers and conduct cross-site scripting (XSS) attacks via unspecified vectors. | 6.1 |
| 2016-06-19 | CVE-2016-1223 | Path Traversal vulnerability in Trendmicro products Directory traversal vulnerability in Trend Micro Office Scan 11.0, Worry-Free Business Security Service 5.x, and Worry-Free Business Security 9.0 allows remote attackers to read arbitrary files via unspecified vectors. | 5.3 |