trendmicro interscan-web-security-virtual-appliance CVE-2021-25252 vulnerability in TrendMicro Products
Published on March 3, 2021

Trend Micro's Virus Scan API (VSAPI) and Advanced Threat Scan Engine (ATSE) - are vulnerable to a memory exhaustion vulnerability that may lead to denial-of-service or system freeze if exploited by an attacker using a specially crafted file.

NVD


Products Associated with CVE-2021-25252

Want to know whenever a new CVE is published for TrendMicro products? stack.watch will email you.

TrendMicro Interscan Web Security Virtual Appliance
 
TrendMicro Cloud Edge
 
TrendMicro Deep Security
 
TrendMicro Deep Discovery Analyzer
 
TrendMicro Deep Discovery Email Inspector
 
TrendMicro Deep Discovery Inspector
 
TrendMicro Interscan Messaging Security Virtual Appliance
 

Affected Versions

Trend Micro Virus Scan API (VSAPI) Engine Version 12.0 is affected by CVE-2021-25252

Exploit Probability

EPSS
0.18%
Percentile
38.91%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.