CVE-2021-25241

UNKNOWN

Published 2021-02-04T19:36:47

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2021-25241. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

A server-side request forgery (SSRF) information disclosure vulnerability in Trend Micro Apex One and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to locate online agents via a sweep.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Trend Micro

Trend Micro Apex One

Affected Versions:

2019, SaaS

Trend Micro

Trend Micro Worry-Free Business Security

Affected Versions:

10.0 SP1

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-hj87-9mrp-3rp8

Advisory Details

CVSS Scoring

CVSS Score

5.0

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2021-25241

WEB https://success.trendmicro.com/solution/000284202

WEB https://success.trendmicro.com/solution/000284206

WEB https://www.zerodayinitiative.com/advisories/ZDI-21-114

Advisory provided by GitHub Security Advisory Database. Published: May 24, 2022, Modified: May 24, 2022

References

https://success.trendmicro.com/solution/000284202

https://success.trendmicro.com/solution/000284206

https://www.zerodayinitiative.com/advisories/ZDI-21-114/

Published: 2021-02-04T19:36:47

Last Modified: 2024-08-03T19:56:11.098Z

Copied to clipboard!

CVE-2021-25241

Expert Analysis

Description

Available Exploits

Related News

Affected Products

Trend Micro Apex One

Affected Versions:

Trend Micro Worry-Free Business Security

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

References

References

Request Analysis

What to expect

Request Received!