cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-14688,https://securityvulnerability.io/vulnerability/CVE-2019-14688,DLL Hijack Vulnerability in Trend Micro Installation Packages,"Trend Micro installation packages have been found to contain a DLL hijack vulnerability that is exploitable during the initial installation phase of various products. This issue occurs when an authorized user unknowingly runs the installer, allowing an attacker to require the download of a malicious DLL file on the user's local system. As a result, the compromised DLL could be executed, leading to potential unauthorized actions on the system. The vulnerability raises concerns about the security of software installations and the need for users to be vigilant during the setup process.",Trend Micro,"Trend Micro Im Security (ims), Trend Micro Control Manager (tmcm), Trend Micro Officescan (osce), Trend Micro Endpoint Sensor (tmes), Trend Micro Security (consumer), Trend Micro Scanmail For Microsoft Exchange (smex), Trend Micro Serverprotect (sp), Trend Micro Mobile Security Enterprise (tmms Enterprise)",7,HIGH,0.0006300000241026282,false,,false,false,false,,,false,false,,2020-02-20T22:50:22.000Z,0
CVE-2017-14093,https://securityvulnerability.io/vulnerability/CVE-2017-14093,,The Log Query and Quarantine Query pages in Trend Micro ScanMail for Exchange 12.0 are vulnerable to cross site scripting (XSS) attacks.,Trend Micro,Trend Micro Scanmail For Exchange,6.1,MEDIUM,0.0024399999529123306,false,,false,false,false,,,false,false,,2017-12-16T02:29:00.000Z,0
CVE-2017-14090,https://securityvulnerability.io/vulnerability/CVE-2017-14090,,A vulnerability in Trend Micro ScanMail for Exchange 12.0 exists in which some communications to the update servers are not encrypted.,Trend Micro,Trend Micro Scanmail For Exchange,9.1,CRITICAL,0.005960000213235617,false,,false,false,false,,,false,false,,2017-12-16T02:29:00.000Z,0
CVE-2017-14091,https://securityvulnerability.io/vulnerability/CVE-2017-14091,,A vulnerability in Trend Micro ScanMail for Exchange 12.0 exists in which certain specific installations that utilize a uncommon feature - Other Update Sources - could be exploited to overwrite sensitive files in the ScanMail for Exchange directory.,Trend Micro,Trend Micro Scanmail For Exchange,7.5,HIGH,0.005369999911636114,false,,false,false,false,,,false,false,,2017-12-15T14:00:00.000Z,0
CVE-2015-3326,https://securityvulnerability.io/vulnerability/CVE-2015-3326,,"Trend Micro ScanMail for Microsoft Exchange (SMEX) 10.2 before Hot Fix Build 3318 and 11.0 before Hot Fix Build 4180 creates session IDs for the web console using a random number generator with predictable values, which makes it easier for remote attackers to bypass authentication via a brute force attack.",Trend Micro,Scanmail,,,0.0029200001154094934,false,,false,false,false,,,false,false,,2015-05-14T00:00:00.000Z,0
CVE-2007-0851,https://securityvulnerability.io/vulnerability/CVE-2007-0851,,"Buffer overflow in the Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, as used in other products such as Cyber Clean Center (CCC) Cleaner, allows remote attackers to execute arbitrary code via a malformed UPX compressed executable.",Trend Micro,"Interscan Emanager,Scanmail,Pc Cillin - Internet Security 2006,Interscan Viruswall,Officescan,Interscan Viruswall For Windows Nt,Portalprotect,Interscan Web Security Suite,Serverprotect,Control Manager,Viruswall,Webprotect,Interscan Webmanager,Pc-cillin Internet Security,Interscan Messaging Security Suite,Web Security Suite,Client-server-messaging Suite Smb,Interscan Viruswall Scan Engine,Client-server Suite Smb,Pc-cillin,Scanning Engine,Scanmail Emanager,Interscan Webprotect",,,0.8936799764633179,false,,false,false,false,,,false,false,,2007-02-08T18:00:00.000Z,0
CVE-2005-0533,https://securityvulnerability.io/vulnerability/CVE-2005-0533,,"Heap-based buffer overflow in Trend Micro AntiVirus Library VSAPI before 7.510, as used in multiple Trend Micro products, allows remote attackers to execute arbitrary code via a crafted ARJ file with long header file names that modify pointers within a structure.",Trend Micro,"Interscan Emanager,Scanmail,Serverprotect,Interscan Viruswall,Officescan,Interscan Web Security Suite,Interscan Webmanager,Interscan Messaging Security Suite,Control Manager,Client-server-messaging Suite Smb,Client-server Suite Smb,Pc-cillin,Portalprotect,Scanmail Emanager,Interscan Webprotect",,,0.21536000072956085,false,,false,false,false,,,false,false,,2005-05-02T04:00:00.000Z,0
CVE-2004-1003,https://securityvulnerability.io/vulnerability/CVE-2004-1003,,Trend ScanMail allows remote attackers to obtain potentially sensitive information or disable the anti-virus capability via the smency.nsf file.,Trend Micro,Scanmail Domino,,,0.05310999974608421,false,,false,false,false,,,false,false,,2005-03-01T05:00:00.000Z,0
CVE-2003-1343,https://securityvulnerability.io/vulnerability/CVE-2003-1343,,"Trend Micro ScanMail for Exchange (SMEX) before 3.81 and before 6.1 might install a back door account in smg_Smxcfg30.exe, which allows remote attackers to gain access to the web management interface via the vcc parameter, possibly ""3560121183d3"".",Trend Micro,Scanmail,,,0.023959999904036522,false,,false,false,false,,,false,false,,2003-12-31T05:00:00.000Z,0
CVE-2001-0586,https://securityvulnerability.io/vulnerability/CVE-2001-0586,,TrendMicro ScanMail for Exchange 3.5 Evaluation allows a local attacker to recover the administrative credentials for ScanMail via a combination of unprotected registry keys and weakly encrypted passwords.,Trend Micro,Scanmail Exchange,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2001-08-22T04:00:00.000Z,0