cbcvebase.

Trend Micro Inc Trend Micro Apex Central vulnerabilities

24 known vulnerabilities affecting trend_micro_inc/trend_micro_apex_central.

Total CVEs
24
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH10MEDIUM10

Vulnerabilities

Page 2 of 2
CVE-2023-38625P4MEDIUMCVSS 5.4≥ 2019, < 8.0.0.64812024-01-23
CVE-2023-38625 [MEDIUM] CWE-918 CVE-2023-38625: A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 20 A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 2019 (lower than build 6481) could allow an attacker to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability
nvd
CVE-2023-52330P4MEDIUMCVSS 6.1≥ 2019, < 8.0.0.65702024-01-23
CVE-2023-52330 [MEDIUM] CWE-79 CVE-2023-52330: A cross-site scripting vulnerability in Trend Micro Apex Central could allow a remote attacker to ex A cross-site scripting vulnerability in Trend Micro Apex Central could allow a remote attacker to execute arbitrary code on affected installations of Trend Micro Apex Central. Please note: user interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
nvd
CVE-2023-32536P4MEDIUMCVSS 5.4≥ 2019 (8.0), < 8.0.0.63942023-06-26
CVE-2023-32536 [MEDIUM] CWE-79 CVE-2023-32536: Affected versions Trend Micro Apex Central (on-premise) are vulnerable to potential authenticated re Affected versions Trend Micro Apex Central (on-premise) are vulnerable to potential authenticated reflected cross-site scripting (XSS) attacks due to user input validation and sanitization issues. Please note: an attacker must first obtain authentication to Apex Central on the target system in order to exploit this vulnerability. This is similar to
nvd
CVE-2023-32604P4MEDIUMCVSS 5.4≥ 2019 (8.0), < 8.0.0.63942023-06-26
CVE-2023-32604 [MEDIUM] CWE-79 CVE-2023-32604: Affected versions Trend Micro Apex Central (on-premise) are vulnerable to potential authenticated re Affected versions Trend Micro Apex Central (on-premise) are vulnerable to potential authenticated reflected cross-site scripting (XSS) attacks due to user input validation and sanitization issues. Please note: an attacker must first obtain authentication to Apex Central on the target system in order to exploit this vulnerability. This is similar to
nvd
Trend Micro Inc Trend Micro Apex Central vulnerabilities | cvebase