Trendmicro : Security Vulnerabilities, CVEs, Published In 2016
SQL injection vulnerability in the authentication functionality in Trend Micro Email Encryption Gateway (TMEEG) 5.5 before build 1107 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Max CVSS
9.8
EPSS Score
0.48%
Published
2016-05-05
Updated
2021-09-09
The HTTP server in Trend Micro Password Manager allows remote web servers to execute arbitrary commands via the url parameter to (1) api/openUrlInDefaultBrowser or (2) api/showSB.
Max CVSS
10.0
EPSS Score
19.98%
Published
2016-04-12
Updated
2021-09-09
Cross-site scripting (XSS) vulnerability in Trend Micro Internet Security 8 and 10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
6.1
EPSS Score
0.21%
Published
2016-06-19
Updated
2016-11-30
Trend Micro Internet Security 8 and 10 allows remote attackers to read arbitrary files via unspecified vectors.
Max CVSS
6.5
EPSS Score
0.18%
Published
2016-06-19
Updated
2016-11-30
CRLF injection vulnerability in Trend Micro Worry-Free Business Security Service 5.x and Worry-Free Business Security 9.0 allows remote attackers to inject arbitrary HTTP headers and conduct cross-site scripting (XSS) attacks via unspecified vectors.
Max CVSS
6.1
EPSS Score
0.11%
Published
2016-06-19
Updated
2021-09-09
Directory traversal vulnerability in Trend Micro Office Scan 11.0, Worry-Free Business Security Service 5.x, and Worry-Free Business Security 9.0 allows remote attackers to read arbitrary files via unspecified vectors.
Max CVSS
5.3
EPSS Score
0.22%
Published
2016-06-19
Updated
2021-08-12
6 vulnerabilities found