QwikSec

Security Database

CVE

CWE

Training

CVE-2021-25239

Published: Feb 4, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

An improper access control vulnerability in Trend Micro Apex One (on-prem), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about x86 agent hotfixes.

Vendor	Product	Versions
Trend Micro	Trend Micro Apex One	affected `2019`
Trend Micro	Trend Micro OfficeScan	affected `XG SP1`
Trend Micro	Trend Micro Worry-Free Business Security	affected `10.0 SP1`

References

https://success.trendmicro.com/solution/000284202

x_refsource_MISC

https://success.trendmicro.com/solution/000284205

x_refsource_MISC

https://success.trendmicro.com/solution/000284206

x_refsource_MISC

https://www.zerodayinitiative.com/advisories/ZDI-21-112/

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.