← back
CVE-2021-25252

CVE-2021-25252

EPSS 0.6%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
03 Mar 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Trend Micro's Virus Scan API (VSAPI) and Advanced Threat Scan Engine (ATSE) - are vulnerable to a memory exhaustion vulnerability that may lead to denial-of-service or system freeze if exploited by an attacker using a specially crafted file.
Affected products
Trend Micro · Trend Micro Virus Scan API (VSAPI) Engine

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://success.trendmicro.com/solution/000285675