CVE-2019-18189 vulnerability in TrendMicro Products
Published on October 28, 2019

A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (11.0, XG) and Worry-Free Business Security (9.5, 10.0) may allow an attacker to bypass authentication and log on to an affected product's management console as a root user. The vulnerability does not require authentication.

NVD

Products Associated with CVE-2019-18189

Want to know whenever a new CVE is published for TrendMicro products? stack.watch will email you.

TrendMicro Apex One

TrendMicro Officescan

TrendMicro Worry Free Business Security

Affected Versions

Trend Micro Apex One, Trend Micro OfficeScan (OSCE), Trend Micro Worry-Free Business Security (WFBS) Version Apex One (All), OSCE (11.0, XG), WFBS (9.5, 10.0) is affected by CVE-2019-18189

Exploit Probability

EPSS

0.60%

Percentile

68.93%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-18189 vulnerability in TrendMicro ProductsPublished on October 28, 2019

Products Associated with CVE-2019-18189

Affected Versions

Exploit Probability

CVE-2019-18189 vulnerability in TrendMicro Products
Published on October 28, 2019