CVE-2021-42012 vulnerability in TrendMicro Products
Published on October 21, 2021

A stack-based buffer overflow vulnerability in Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security 10.0 SP1 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

NVD

Products Associated with CVE-2021-42012

Want to know whenever a new CVE is published for TrendMicro products? stack.watch will email you.

TrendMicro Apex One

TrendMicro Worry Free Business Security

TrendMicro Worry Free Business Security Services

Affected Versions

Trend Micro Apex One:

Version 2019, SaaS is affected.

Trend Micro Worry-Free Business Security:

Version 10.0 SP1 is affected.

Exploit Probability

EPSS

0.17%

Percentile

38.02%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-42012 vulnerability in TrendMicro ProductsPublished on October 21, 2021

Products Associated with CVE-2021-42012

Affected Versions

Exploit Probability

CVE-2021-42012 vulnerability in TrendMicro Products
Published on October 21, 2021