CVE-2019-18189
CVE-2019-18189
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 4.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
28 Oct 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (11.0, XG) and Worry-Free Business Security (9.5, 10.0) may allow an attacker to bypass authentication and log on to an affected product's management console as a root user. The vulnerability does not require authentication.
Affected products
Trend Micro · Trend Micro Apex One, Trend Micro OfficeScan (OSCE), Trend Micro Worry-Free Business Security (WFBS)Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →