Trend Micro Inc Trend Micro Apex Central vulnerabilities
24 known vulnerabilities affecting trend_micro_inc/trend_micro_apex_central.
Total CVEs
24
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH10MEDIUM10
Vulnerabilities
Page 2 of 2
CVE-2023-38625P4MEDIUMCVSS 5.4≥ 2019, < 8.0.0.64812024-01-23
CVE-2023-38625 [MEDIUM] CWE-918 CVE-2023-38625: A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 20
A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 2019 (lower than build 6481) could allow an attacker to interact with internal or local services directly.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability
nvd
CVE-2023-52330P4MEDIUMCVSS 6.1≥ 2019, < 8.0.0.65702024-01-23
CVE-2023-52330 [MEDIUM] CWE-79 CVE-2023-52330: A cross-site scripting vulnerability in Trend Micro Apex Central could allow a remote attacker to ex
A cross-site scripting vulnerability in Trend Micro Apex Central could allow a remote attacker to execute arbitrary code on affected installations of Trend Micro Apex Central.
Please note: user interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
nvd
CVE-2023-32536P4MEDIUMCVSS 5.4≥ 2019 (8.0), < 8.0.0.63942023-06-26
CVE-2023-32536 [MEDIUM] CWE-79 CVE-2023-32536: Affected versions Trend Micro Apex Central (on-premise) are vulnerable to potential authenticated re
Affected versions Trend Micro Apex Central (on-premise) are vulnerable to potential authenticated reflected cross-site scripting (XSS) attacks due to user input validation and sanitization issues.
Please note: an attacker must first obtain authentication to Apex Central on the target system in order to exploit this vulnerability.
This is similar to
nvd
CVE-2023-32604P4MEDIUMCVSS 5.4≥ 2019 (8.0), < 8.0.0.63942023-06-26
CVE-2023-32604 [MEDIUM] CWE-79 CVE-2023-32604: Affected versions Trend Micro Apex Central (on-premise) are vulnerable to potential authenticated re
Affected versions Trend Micro Apex Central (on-premise) are vulnerable to potential authenticated reflected cross-site scripting (XSS) attacks due to user input validation and sanitization issues.
Please note: an attacker must first obtain authentication to Apex Central on the target system in order to exploit this vulnerability.
This is similar to
nvd
← Previous2 / 2