Trendmicro Apex One vulnerabilities
173 known vulnerabilities affecting trendmicro/apex_one.
Total CVEs
173
CISA KEV
10
actively exploited
Public exploits
0
Exploited in wild
12
Severity breakdown
CRITICAL10HIGH116MEDIUM47
Vulnerabilities
Page 1 of 9
CVE-2025-54948P1CRITICALCVSS 9.8KEVv20192025-08-05
CVE-2025-54948 [CRITICAL] CWE-78 CVE-2025-54948: A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authentica
A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker to upload malicious code and execute commands on affected installations.
nvd
CVE-2020-8599P1CRITICALCVSS 9.8KEVv20192020-03-18
CVE-2020-8599 [CRITICAL] CVE-2020-8599: Trend Micro Apex One (2019) and OfficeScan XG server contain a vulnerable EXE file that could allow
Trend Micro Apex One (2019) and OfficeScan XG server contain a vulnerable EXE file that could allow a remote attacker to write arbitrary data to an arbitrary path on affected installations and bypass ROOT login. Authentication is not required to exploit this vulnerability.
nvd
CVE-2021-36741P1HIGHCVSS 8.8KEVv20192021-07-29
CVE-2021-36741 [HIGH] CWE-434 CVE-2021-36741: An improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeSca
An improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG, and Worry-Free Business Security 10.0 SP1 allows a remote attached to upload arbitrary files on affected installations. Please note: an attacker must first obtain the ability to logon to the product�s management console in order to exploit this vu
nvd
CVE-2020-8467P1HIGHCVSS 8.8KEVv20192020-03-18
CVE-2020-8467 [HIGH] CVE-2020-8467: A migration tool component of Trend Micro Apex One (2019) and OfficeScan XG contains a vulnerability
A migration tool component of Trend Micro Apex One (2019) and OfficeScan XG contains a vulnerability which could allow remote attackers to execute arbitrary code on affected installations (RCE). An attempted attack requires user authentication.
nvd
CVE-2020-8468P1HIGHCVSS 8.8KEVv20192020-03-18
CVE-2020-8468 [HIGH] CWE-74 CVE-2020-8468: Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) agents
Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) agents are affected by a content validation escape vulnerability which could allow an attacker to manipulate certain agent client components. An attempted attack requires user authentication.
nvd
CVE-2026-34926P1MEDIUMCVSS 6.7KEVfixed in 14.0.0.17079fixed in 14.0.207312026-05-21
CVE-2026-34926 [MEDIUM] CWE-23 CVE-2026-34926: A directory traversal vulnerability in the Apex One (on-premise) server could allow a pre-authentica
A directory traversal vulnerability in the Apex One (on-premise) server could allow a pre-authenticated local attacker to modify a key table on the server to inject malicious code to deploy to agents on affected installations.
This vulnerability is only exploitable on the on-premise version of Apex One and a potential attacker must have access to t
nvd
CVE-2023-41179P1HIGHCVSS 7.2KEVv20192023-09-19
CVE-2023-41179 [HIGH] CWE-94 CVE-2023-41179: A vulnerability in the 3rd party AV uninstaller module contained in Trend Micro Apex One (on-prem an
A vulnerability in the 3rd party AV uninstaller module contained in Trend Micro Apex One (on-prem and SaaS), Worry-Free Business Security and Worry-Free Business Security Services could allow an attacker to manipulate the module to execute arbitrary commands on an affected installation.
Note that an attacker must first obtain administrative console ac
nvd
CVE-2020-24557P1HIGHCVSS 7.8KEVv20192020-09-01
CVE-2020-24557 [HIGH] CVE-2020-24557: A vulnerability in Trend Micro Apex One and Worry-Free Business Security 10.0 SP1 on Microsoft Windo
A vulnerability in Trend Micro Apex One and Worry-Free Business Security 10.0 SP1 on Microsoft Windows may allow an attacker to manipulate a particular product folder to disable the security temporarily, abuse a specific Windows function and attain privilege escalation. An attacker must first obtain the ability to execute low-privileged code on the target sys
nvd
CVE-2021-36742P1HIGHCVSS 7.8KEVv20192021-07-29
CVE-2021-36742 [HIGH] CWE-20 CVE-2021-36742: A improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan
A improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG and Worry-Free Business Security 10.0 SP1 allows a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vu
nvd
CVE-2022-40139P1HIGHCVSS 7.2KEVv20192022-09-19
CVE-2022-40139 [HIGH] CVE-2022-40139: Improper validation of some components used by the rollback mechanism in Trend Micro Apex One and Tr
Improper validation of some components used by the rollback mechanism in Trend Micro Apex One and Trend Micro Apex One as a Service clients could allow a Apex One server administrator to instruct affected clients to download an unverified rollback package, which could lead to remote code execution. Please note: an attacker must first obtain Apex One server ad
nvd
CVE-2025-54987P1CRITICALCVSS 9.8Exploitedv20192025-08-05
CVE-2025-54987 [CRITICAL] CVE-2025-54987: A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authentica
A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker to upload malicious code and execute commands on affected installations. This vulnerability is essentially the same as CVE-2025-54948 but targets a different CPU architecture.
nvd
CVE-2019-9489P2HIGHCVSS 7.5Exploited≤ b10662019-04-05
CVE-2019-9489 [HIGH] CWE-22 CVE-2019-9489: A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (versions XG and 11.0), and
A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (versions XG and 11.0), and Worry-Free Business Security (versions 10.0, 9.5 and 9.0) could allow an attacker to modify arbitrary files on the affected product's management console.
nvd
CVE-2025-71210P2CRITICALCVSS 9.8fixed in 14.0.0.14136fixed in 14.0.203152026-05-21
CVE-2025-71210 [CRITICAL] CWE-22 CVE-2025-71210: A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to uplo
A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations.
Please note: although this vulnerability carries a technical critical CVSS rating, this was reported via responsible disclosure via a researcher through the Zero Day Initiative. The S
nvd
CVE-2025-71211P2CRITICALCVSS 9.8fixed in 14.0.0.14136fixed in 14.0.203152026-05-21
CVE-2025-71211 [CRITICAL] CVE-2025-71211: A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to uplo
A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. This vulnerability is similar in scope to CVE-2025-71210 but affects a different executable.
Please note: although this vulnerability carries a technical critical CVSS rating, this was repor
nvd
CVE-2020-8598P2CRITICALCVSS 9.8v20192020-03-18
CVE-2020-8598 [CRITICAL] CWE-306 CVE-2020-8598: Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server
Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server contains a vulnerable service DLL file that could allow a remote attacker to execute arbitrary code on affected installations with SYSTEM level privileges. Authentication is not required to exploit this vulnerability.
nvd
CVE-2023-32557P2CRITICALCVSS 9.8fixed in 14.0.12105v20192023-06-26
CVE-2023-32557 [CRITICAL] CWE-22 CVE-2023-32557: A path traversal vulnerability in the Trend Micro Apex One and Apex One as a Service could allow an
A path traversal vulnerability in the Trend Micro Apex One and Apex One as a Service could allow an unauthenticated attacker to upload an arbitrary file to the Management Server which could lead to remote code execution with system privileges.
nvd
CVE-2022-40144P2CRITICALCVSS 9.8v20192022-09-19
CVE-2022-40144 [CRITICAL] CWE-287 CVE-2022-40144: A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacke
A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product's login authentication by falsifying request parameters on affected installations.
nvd
CVE-2021-32465P2HIGHCVSS 8.8v20192021-08-04
CVE-2021-32465 [HIGH] CWE-281 CVE-2021-32465: An incorrect permission preservation vulnerability in Trend Micro Apex One, Apex One as a Service an
An incorrect permission preservation vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a remote user to perform an attack and bypass authentication on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this v
nvd
CVE-2023-25143P2CRITICALCVSS 9.8fixed in 14.0.11960v20192023-03-10
CVE-2023-25143 [CRITICAL] CWE-427 CVE-2023-25143: An uncontrolled search path element vulnerability in the Trend Micro Apex One Server installer could
An uncontrolled search path element vulnerability in the Trend Micro Apex One Server installer could allow an attacker to achieve a remote code execution state on affected products.
nvd
CVE-2024-52047P3HIGHCVSS 8.8fixed in 14.0.13139v20192024-12-31
CVE-2024-52047 [HIGH] CWE-552 CVE-2024-52047: A widget local file inclusion vulnerability in Trend Micro Apex One could allow a remote attacker to
A widget local file inclusion vulnerability in Trend Micro Apex One could allow a remote attacker to execute arbitrary code on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
nvd
1 / 9Next →