trendmicro

575 tracked vulnerabilities.

CVE-2025-49385 HIGH
Trend Micro Security 17.8 - Local Privilege Escalation via Windows Shortcut Following
Jun 17, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49384 HIGH
Trend Micro Security 17.8 - Local Privilege Escalation via .LNK File Following
Jun 17, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49218 HIGH
Trend Micro Endpoint Encryption < 6.0.0.4013 - Authenticated SQL Injection
Jun 17, 2025
CVSS 7.7
EPSS 0.00
CVE-2025-49217 CRITICAL
Trend Micro Endpoint Encryption < 6.0.0.4013 - Unauthenticated Remote Code Execution via Insecure Deserialization
Jun 17, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-49216 CRITICAL
Trend Micro Endpoint Encryption < 6.0.0.4013 - Authentication Bypass
Jun 17, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-49215 HIGH
Trend Micro Endpoint Encryption < 6.0.0.4013 - Authenticated SQL Injection
Jun 17, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-49214 HIGH
Trend Micro Endpoint Encryption < 6.0.0.4013 - Authenticated Remote Code Execution via Insecure Deserialization
Jun 17, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49213 CRITICAL
Trend Micro Endpoint Encryption < 6.0.0.4013 - Unauthenticated Remote Code Execution via Insecure Deserialization
Jun 17, 2025
CVSS 9.8
EPSS 0.08
CVE-2025-49212 CRITICAL
Trend Micro Endpoint Encryption < 6.0.0.4013 - Unauthenticated Remote Code Execution via Insecure Deserialization
Jun 17, 2025
CVSS 9.8
EPSS 0.08
CVE-2025-49211 HIGH
Trend Micro Endpoint Encryption < 6.0.0.4013 - SQL Injection
Jun 17, 2025
CVSS 7.7
EPSS 0.00
CVE-2025-48443 MEDIUM
Trend Micro Password Manager <5.0.0.1266 - Privilege Escalation
Jun 17, 2025
CVSS 6.7
EPSS 0.00
CVE-2025-30642 MEDIUM
Trend Micro Deep Security Agent < 20.0.1 - Denial of Service via Link Following
Jun 17, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-30641 HIGH
Trend Micro Deep Security Agent < 20.0.1 - Privilege Escalation via Link Following
Jun 17, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30640 HIGH
Trend Micro Deep Security Agent - Privilege Escalation via Link Following
Jun 17, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30680 HIGH
Trend Micro Apex Central (SaaS) < 2025-03-01 - Server-Side Request Forgery via Parameter Manipulation
Jun 17, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-30679 MEDIUM
Trend Micro Apex Central - Server-Side Request Forgery via modOSCE Parameter Manipulation
Jun 17, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-30678 MEDIUM
Trend Micro Apex Central - Server-Side Request Forgery in modTMSM Component
Jun 17, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-49487 MEDIUM
Trend Micro Worry-Free Business Security Services 6.7.0.0-6.7.3954 - Uncontrolled Search Path Element
Jun 17, 2025
CVSS 6.8
EPSS 0.00
CVE-2025-49158 MEDIUM
Trend Micro Apex One < 14.0.14492 and 14.0.0.12994-14.0.0.14002 - Privilege Escalation via Uncontrolled Search Path
Jun 17, 2025
CVSS 6.7
EPSS 0.00
CVE-2025-49157 HIGH
Trend Micro Apex One < 14.0.14492 and 14.0.0.12994-14.0.0.14002 - Local Privilege Escalation via Damage Cleanup Engine
Jun 17, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49156 HIGH
Trend Micro Apex One < 14.0.14492 & 14.0.0.12994-14.0.0.14002 Local Privilege Escalation
Jun 17, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-49155 HIGH
Trend Micro Apex One < 14.0.14492 and 14.0.0.12994-14.0.0.14002 - Uncontrolled Search Path Element
Jun 17, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49154 HIGH
Trend Micro Apex One and Worry-Free Business Security - Local Privilege Escalation via Memory-Mapped File Overwrite
Jun 17, 2025
CVSS 8.7
EPSS 0.00
CVE-2025-49220 CRITICAL
Trend Micro Apex Central < 8.0.7007 - Unauthenticated Remote Code Execution via Insecure Deserialization
Jun 17, 2025
CVSS 9.8
EPSS 0.02
CVE-2025-49219 CRITICAL
Trend Micro Apex Central - Pre-Authentication Remote Code Execution via Insecure Deserialization
Jun 17, 2025
CVSS 9.8
EPSS 0.01