PT-2021-16475 · Trend Micro · Trend Micro Apex One

Elias Martinez

Published

2021-01-29

Updated

2021-02-05

CVE-2021-25237

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions: Trend Micro Apex One (on-prem) (affected versions not specified)

Description: An improper access control issue could allow an unauthenticated user to obtain information about the managing port used by agents. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-25237

ZDI-21-111

Affected Products

Trend Micro Apex One

PT-2021-16475 · Trend Micro · Trend Micro Apex One

CVE-2021-25237

Related Identifiers

Affected Products

References · 6