CVE-2021-25236

UNKNOWN

Published 2021-02-04T19:36:43

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2021-25236. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

A server-side request forgery (SSRF) information disclosure vulnerability in Trend Micro OfficeScan XG SP1 and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to locate online agents via a specific sweep.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Trend Micro

Trend Micro OfficeScan

Affected Versions:

XG SP1

Trend Micro

Trend Micro Worry-Free Business Security

Affected Versions:

10.0 SP1

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-6hx5-9q4p-p96w

Advisory Details

CVSS Scoring

CVSS Score

5.0

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2021-25236

WEB https://success.trendmicro.com/solution/000284205

WEB https://success.trendmicro.com/solution/000284206

WEB https://www.zerodayinitiative.com/advisories/ZDI-21-120

Advisory provided by GitHub Security Advisory Database. Published: May 24, 2022, Modified: May 24, 2022

References

https://success.trendmicro.com/solution/000284205

https://success.trendmicro.com/solution/000284206

https://www.zerodayinitiative.com/advisories/ZDI-21-120/

Published: 2021-02-04T19:36:43

Last Modified: 2024-08-03T19:56:11.077Z

Copied to clipboard!

CVE-2021-25236

Expert Analysis

Description

Available Exploits

Related News

Affected Products

Trend Micro OfficeScan

Affected Versions:

Trend Micro Worry-Free Business Security

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

References

References

Request Analysis

What to expect

Request Received!