CVE-2022-25329 vulnerability in TrendMicro Products
Published on February 24, 2022

Trend Micro ServerProtect 6.0/5.8 Information Server uses a static credential to perform authentication when a specific command is typed in the console. An unauthenticated remote attacker with access to the Information Server could exploit this to register to the server and perform authenticated actions.

NVD

Products Associated with CVE-2022-25329

stack.watch emails you whenever new vulnerabilities are published in TrendMicro Serverprotect or TrendMicro Serverprotect Network Appliance Filer. Just hit a watch button to start following.

TrendMicro Serverprotect

TrendMicro Serverprotect Network Appliance Filer

Affected Versions

Trend Micro ServerProtect for Storage:

Version 6.0 is affected.

Trend Micro ServerProtect for Microsoft Windows / Novell NetWare:

Version 5.8 is affected.

Trend Micro ServerProtect for EMC Celerra:

Version 5.8 is affected.

Trend Micro ServerProtect for Network Appliance Filers:

Version 5.8 is affected.

Exploit Probability

EPSS

2.63%

Percentile

85.49%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2022-25329 vulnerability in TrendMicro ProductsPublished on February 24, 2022

Products Associated with CVE-2022-25329

Affected Versions

Exploit Probability

CVE-2022-25329 vulnerability in TrendMicro Products
Published on February 24, 2022