CVE-2019-18189

EPSS 4.5%

Vexday Risk Score

3Bajo

Decisión SSVC (CISA)

Track

Sin señal de explotación → monitorear

CVSS —EPSS 4.5%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

28 oct 2019Publicada en NVD

Recomendación: Monitorear — sin señal de explotación por ahora.

A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (11.0, XG) and Worry-Free Business Security (9.5, 10.0) may allow an attacker to bypass authentication and log on to an affected product's management console as a root user. The vulnerability does not require authentication.

Productos afectados

Trend Micro · Trend Micro Apex One, Trend Micro OfficeScan (OSCE), Trend Micro Worry-Free Business Security (WFBS)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://success.trendmicro.com/solution/000151732