CVE-2021-36741
Published: Jul 29, 2021
Modified: Oct 21, 2025
Description
An improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG, and Worry-Free Business Security 10.0 SP1 allows a remote attached to upload arbitrary files on affected installations. Please note: an attacker must first obtain the ability to logon to the product�s management console in order to exploit this vulnerability.
| Vendor | Product | Versions |
|---|---|---|
Trend Micro | Trend Micro Apex One | affected 2019, SaaS |
Trend Micro | Trend Micro OfficeScan | affected XG SP1 |
Trend Micro | Trend Micro Worry-Free Business Security | affected 10.0 SP1 |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now