Vulnerability Reports VU
2024
- 2024/12/24 JVNVU#92980681:
- Trend Micro Deep Security 20.0 Agent (for Windows) vulnerable to uncontrolled search path element
- 2024/12/20 JVNVU#95720792:
- Multiple security updates for Trend Micro Apex One and Apex One as a Service (December 2024)
- 2024/12/13 JVNVU#91084137:
- Multiple vulnerabilities in FXC AE1021 and AE1021PE
- 2024/12/13 JVNVU#90748215:
- WordPress Plugin "My WP Customize Admin/Frontend" vulnerable to cross-site scripting
- 2024/12/05 JVNVU#93693807:
- Trend Micro Deep Security Agent for Windows and Deep Security Notifier on DSVA vulnerable to OS command injection
- 2024/11/28 JVNVU#97531313:
- Multiple vulnerabilities in FUJI ELECTRIC products
- 2024/11/21 JVNVU#92857077:
- Multiple vulnerabilities in Edgecross Basic Software for Windows
- 2024/11/20 JVNVU#99607268:
- Vulnerabilities in multiple Dahua Technology products (DHCC-SA-202407-001)
- 2024/11/18 JVNVU#90667116:
- Multiple vulnerabilities in Rakuten Turbo 5G
- 2024/11/12 JVNVU#90676195:
- Multiple vulnerabilities in SoftBank Mesh Wi-Fi router RP562B
- 2024/11/05 JVNVU#96058081:
- Trend Micro Deep Security 20 Agent for Windows vulnerable to improper access control
- 2024/11/01 JVNVU#95685374:
- Incorrect authorization vulnerability in OMRON Sysmac Studio
- 2024/10/31 JVNVU#95001899:
- REST-APIs unintentionally enabled in Century Systems FutureNet NXR series routers
- 2024/10/31 JVNVU#94153896:
- Command injection vulnerability in Trend Micro Cloud Edge
- 2024/10/25 JVNVU#95063136:
- Multiple vulnerabilities in Sharp and Toshiba Tec MFPs
- 2024/10/21 JVNVU#93072012:
- Multiple SQL injection vulnerabilities in Trend Micro Deep Discovery Inspector
- 2024/10/02 JVNVU#92808077:
- Multiple vulnerabilities in JTEKT ELECTRONICS Kostac PLC Programming Software
- 2024/09/30 JVNVU#95133448:
- Insecure initial password configuration issue in SEIKO EPSON Web Config
- 2024/09/27 JVNVU#91077448:
- SNMP service is enabled by default in Sharp NEC Display Solutions projectors
- 2024/09/18 JVNVU#90142679:
- Multiple vulnerabilities in TAKENAKA ENGINEERING digital video recorders
- 2024/08/30 JVNVU#96959731:
- Multiple vulnerabilities in IDEC PLCs
- 2024/08/30 JVNVU#99905584:
- Panasonic Control FPWIN Pro7 vulnerable to stack-based buffer overflow
- 2024/08/29 JVNVU#96242582:
- Multiple vulnerabilities in IDEC Operator Interfaces products
- 2024/08/28 JVNVU#96498690:
- xfpt vulnerable to stack-based buffer overflow
- 2024/07/23 JVNVU#98330908:
- Multiple products from Check Point Software Technologies vulnerable to information disclosure
- 2024/07/16 JVNVU#96424864:
- Multiple vulnerabilities in FutureNet NXR series, VXR series and WXR series
- 2024/06/27 JVNVU#99784493:
- Multiple TP-Link products vulnerable to OS command injection
- 2024/06/21 JVNVU#91384468:
- LINE client for iOS vulnerable to universal cross-site scripting
- 2024/06/19 JVNVU#99027428:
- Multiple vulnerabilities in multiple Trend Micro products
- 2024/06/14 JVNVU#97136265:
- Multiple vulnerabilities in Toshiba Tec and Oki Electric Industry MFPs
- 2024/05/31 JVNVU#93051062:
- Multiple vulnerabilities in Sharp and Toshiba Tec MFPs
- 2024/05/31 JVNVU#94872523:
- Seiko Solutions SkyBridge MB-A100/MB-A110 and SkyBridge BASIC MB-A130 vulnerable to OS command injection
- 2024/05/28 JVNVU#97214223:
- ELECOM wireless LAN routers vulnerable to OS command injection
- 2024/05/27 JVNVU#92504444:
- OMRON NJ/NX series vulnerable to insufficient verification of data authenticity
- 2024/05/16 JVNVU#95120091:
- Panasonic KW Watcher vulnerable to memory buffer error
- 2024/05/15 JVNVU#92249385:
- Ruijie BCR810W/BCR860 vulnerable to OS command injection
- 2024/05/15 JVNVU#95350607:
- Multiple vulnerabilities in Field Logic DataCube
- 2024/05/10 JVNVU#99669446:
- Central Dogma vulnerable to cross-site scripting
- 2024/05/07 JVNVU#97614828:
- Trend Micro Maximum Security vulnerable to improper link resolution (CVE-2024-32849)
- 2024/04/24 JVNVU#91883072:
- NETGEAR routers vulnerable to buffer overflow
- 2024/04/22 JVNVU#98274902:
- Multiple vulnerabilities in OMRON Sysmac Studio/CX-One and CX-Programmer
- 2024/04/19 JVNVU#91216202:
- Armeria-saml improperly handles SAML messages
- 2024/04/19 JVNVU#91696361:
- LINE client for iOS vulnerable to improper server certificate verification
- 2024/04/04 JVNVU#94016877:
- Multiple vulnerabilities in Cente middleware
- 2024/04/04 JVNVU#91975826:
- Multiple vulnerabilities in PLANEX COMMUNICATIONS wireless LAN router MZK-MF300N
- 2024/04/01 JVNVU#99285099:
- FURUNO SYSTEMS Managed Switch ACERA 9010 running in non MS mode with the initial configuration has no password
- 2024/03/29 JVNVU#92825069:
- KEYENCE VT STUDIO may insecurely load Dynamic Link Libraries
- 2024/03/29 JVNVU#95439120:
- Multiple vulnerabilities in KEYENCE KV STUDIO, KV REPLAY VIEWER, and VT5-WX15/WX12
- 2024/03/27 JVNVU#93932313:
- SEEnergy SVR-116 vulnerable to OS command injection
- 2024/03/26 JVNVU#95381465:
- Multiple vulnerabilities in ELECOM wireless LAN routers
- 2024/03/22 JVNVU#93546510:
- Multiple vulnerabilities in home gateway HGW BL1500HM
- 2024/03/22 JVNVU#90953541:
- BUFFALO LinkStation 200 series vulnerable to arbitrary code execution
- 2024/03/21 JVNVU#90671953:
- Sangoma Technologies CG/MG family driver cg6kwin2k.sys vulnerable to insufficient access control on its IOCTL
- 2024/03/07 JVNVU#95852116:
- OMRON NJ/NX series vulnerable to path traversal
- 2024/02/21 JVNVU#93534773:
- Multiple vulnerabilities in multiple Trend Micro products
- 2024/02/21 JVNVU#96033712:
- Multiple vulnerabilities in Trend Micro Apex Central
- 2024/02/20 JVNVU#99444194:
- ELECOM wireless LAN routers vulnerable to OS command injection
- 2024/02/14 JVNVU#93381734:
- Android App "Mopria Print Service" vulnerable to improper intent handling
- 2024/02/06 JVNVU#90033405:
- Multiple out-of-bounds write vulnerabilities in Canon Office/Small Office Multifunction Printers and Laser Printers
- 2024/02/05 JVNVU#97836276:
- Sharp NEC Display Solutions' public displays vulnerable to local file inclusion
- 2024/02/02 JVNVU#93740658:
- Multiple buffer overflow vulnerabilities in HOME SPOT CUBE2
- 2024/02/02 JVNVU#99844997:
- Incorrect permission assignment vulnerability in Trend Micro uiAirSupport
- 2024/01/30 JVNVU#94591337:
- Multiple vulnerabilities in SHARP Energy Management Controller with Cloud Services
- 2024/01/23 JVNVU#90908488:
- ELECOM wireless LAN routers vulnerable to OS command injection
- 2024/01/23 JVNVU#99896362:
- Yamaha wireless LAN access point devices vulnerable to active debug code
- 2024/01/09 JVNVU#92102247:
- Multiple vulnerabilities in Panasonic Control FPWIN Pro7
- 2024/01/09 JVNVU#91401812:
- Multiple TP-Link products vulnerable to OS command injection
2023
- 2023/12/22 JVNVU#97943829:
- Brother iPrint&Scan Desktop for Windows vulnerable to improper link resolution before file access
- 2023/12/14 JVNVU#97876221:
- WordPress plugin "MW WP Form" vulnerable to arbitrary file upload
- 2023/12/12 JVNVU#97499577:
- ELECOM wireless LAN routers vulnerable to OS command injection
- 2023/12/08 JVNVU#98954443:
- Multiple vulnerabilities in Edgecross Basic Software for Windows
- 2023/12/06 JVNVU#92152057:[Critical]
- FXC wireless LAN routers "AE1021PE" and "AE1021" vulnerable to OS command injection
- 2023/11/17 JVNVU#98954968:
- Multiple vulnerabilities in EXPRESSCLUSTER X
- 2023/11/16 JVNVU#99077347:
- Multiple vulnerabilities in First Corporation's DVRs
- 2023/11/15 JVNVU#96079387:
- ASUSTeK COMPUTER RT-AC87U vulnerable to improper access control
- 2023/11/14 JVNVU#94119876:
- Multiple vulnerabilities in ELECOM and LOGITEC routers
- 2023/11/10 JVNVU#98040889:
- Multiple security updates for Trend Micro Apex One and Apex One as a Service (November 2023)
- 2023/11/10 JVNVU#93840158:
- Multiple vulnerabilities in FUJI ELECTRIC products
- 2023/11/01 JVNVU#96482726:
- FUJIFILM Business Innovation Corp. and Xerox Corporation MFPs export Address Books with insufficient encryption strength
- 2023/10/31 JVNVU#99565391:
- MCL Technologies MCL-Net vulnerable to directory traversal
- 2023/10/26 JVNVU#97149791:
- Advanced Micro Devices Windows kernel drivers vulnerable to insufficient access control on its IOCTL
- 2023/10/23 JVNVU#98683567:
- Improper restriction of XML external entity reference (XXE) vulnerability in OMRON CX-Designer
- 2023/10/17 JVNVU#98392064:
- Multiple vulnerabilities in JTEKT ELECTRONICS OnSinView2
- 2023/10/10 JVNVU#94752076:
- Out-of-bounds read vulnerability in Keyence KV STUDIO and KV REPLAY VIEWER
- 2023/10/10 JVNVU#99039725:
- Multiple vulnerabilities in Micro Research MR-GM series
- 2023/10/02 JVNVU#94497038:
- Multiple vulnerabilities in multiple FURUNO SYSTEMS wireless LAN access point devices in ST(Standalone) mode
- 2023/09/26 JVNVU#95549489:
- Multiple vulnerabilities in Panasonic KW Watcher
- 2023/09/25 JVNVU#95732401:
- Trend Micro Mobile Security vulnerable to cross-site scripting
- 2023/09/19 JVNVU#90967486:[Critical]
- Trend Micro Endpoint security products for enterprises vulnerable to arbitrary code execution
- 2023/09/12 JVNVU#95282683:
- Multiple vulnerabilities in JTEKT ELECTRONICS Kostac PLC Programming Software
- 2023/08/28 JVNVU#93886750:
- Phoenix Technologies Windows kernel driver vulnerable to insufficient access control on its IOCTL
- 2023/08/21 JVNVU#96622721:
- Multiple vulnerabilities in Panasonic Control FPWIN Pro7
- 2023/08/21 JVNVU#99392903:
- Multiple vulnerabilities in TP-Link products
- 2023/08/21 JVNVU#92545432:
- Multiple vulnerabilities in CBC digital video recorders
- 2023/08/10 JVNVU#91630351:
- Multiple vulnerabilities in ELECOM and LOGITEC network devices
- 2023/08/09 JVNVU#98367862:
- Multiple server-side request forgery vulnerabilities in Trend Micro Apex Central (July 2023)
- 2023/08/01 JVNVU#92193064:
- OMRON CJ series and CS/CJ Series EtherNet/IT unit vulnerable to Denial-of-Service (DoS)
- 2023/08/01 JVNVU#93286117:
- Multiple vulnerabilities in OMRON CX-Programmer
- 2023/07/27 JVNVU#98785541:
- Multiple vulnerabilities in Command Center RX (CCRX) of Kyocera Document Solutions MFPs and printers
- 2023/07/26 JVNVU#96643580:
- Fujitsu network devices Si-R series and SR-M series vulnerable to authentication bypass
- 2023/07/24 JVNVU#93384719:
- Trend Micro Maximum Security vulnerable to privilege escalation
- 2023/07/11 JVNVU#91850798:
- Multiple vulnerabilities in ELECOM and LOGITEC wireless LAN routers
- 2023/06/29 JVNVU#93767756:
- Null pointer dereference vulnerability in multiple printers and MFPs which implement BROTHER debut web server
- 2023/06/14 JVNVU#92207133:
- Printer Driver Packager NX creates driver installation packages without modification detection
- 2023/06/13 JVNVU#91852506:
- Security updates for multiple Trend Micro products for enterprises (June 2023)
- 2023/06/08 JVNVU#98818508:
- Multiple vulnerabilities in Fuji Electric products
- 2023/06/06 JVNVU#90812349:
- Multiple vulnerabilities in KbDevice digital video recorders
- 2023/06/02 JVNVU#97809354:
- Multiple vulnerabilities in FUJI ELECTRIC FRENIC RHC Loader
- 2023/05/31 JVNVU#93372935:
- Multiple vulnerabilities in Contec CONPROSYS HMI System (CHS)
- 2023/05/24 JVNVU#94777298:
- Multiple vulnerabilities in Canon Office/Small Office Multifunction Printers, Laser Printers and Inkjet Printers
- 2023/05/18 JVNVU#97891206:
- Android App "Brother iPrint&Scan" vulnerable to improper access control
- 2023/05/16 JVNVU#98968780:
- OS command injection vulnerability in Inaba Denki Sangyo Wi-Fi AP UNIT
- 2023/05/08 JVNVU#92106300:
- Multiple vulnerabilities in SolarView Compact
- 2023/04/24 JVNVU#97372625:
- Heap-based buffer overflow vulnerability in OMRON CX-Drive
- 2023/04/11 JVNVU#98434809:
- Multiple mobile printing apps for Android vulnerable to improper intent handling
- 2023/04/05 JVNVU#98775218:
- Yokogawa Electric CENTUM series vulnerable to cleartext storage of sensitive information
- 2023/03/31 JVNVU#92145493:
- CONPROSYS HMI System(CHS) vulnerable to SQL injection
- 2023/03/31 JVNVU#99710864:
- JTEKT ELECTRONIC Screen Creator Advance 2 vulnerable to improper restriction of operations within the bounds of a memory buffer
- 2023/03/17 JVNVU#96198617:
- Multiple vulnerabilities in Contec CONPROSYS IoT Gateway products
- 2023/03/07 JVNVU#96824262:
- Multiple vulnerabilities in Buffalo network devices
- 2023/03/03 JVNVU#94966432:
- Multiple vulnerabilities in JTEKT ELECTRONICS Kostac PLC Programming Software
- 2023/03/02 JVNVU#96890975:
- Multiple vulnerabilities in Edgecross Basic Software for Windows
- 2023/03/01 JVNVU#96882769:
- Multiple vulnerabilities in Trend Micro Maximum Security
- 2023/03/01 JVNVU#96221942:
- Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service
- 2023/02/17 JVNVU#91848962:
- Multiple vulnerabilities in Trend Micro Worry-Free Business Security and Worry-Free Business Security Services
- 2023/02/10 JVNVU#99551468:
- Zuken Elmic KASAGO uses insufficient random values for TCP Initial Sequence Numbers
- 2023/02/03 JVNVU#98917488:
- Multiple vulnerabilities in JTEKT ELECTRONICS Screen Creator Advance 2
- 2023/01/24 JVNVU#94200979:
- Improper restriction of XML external entity reference (XXE) vulnerability in OMRON CX-Motion Pro
- 2023/01/23 JVNVU#97195023:
- Contec CONPROSYS HMI System (CHS) vulnerable to multiple SQL injections
- 2023/01/11 JVNVU#93704047:
- Multiple vulnerabilities in EXPRESSCLUSTER X
- 2023/01/11 JVNVU#91744508:
- Access of uninitialized pointer vulnerability in OMRON CX-Motion-MCH
- 2023/01/11 JVNVU#97575890:
- Active debug code vulnerability in OMRON CP1L-EL20DR-D
- 2023/01/10 JVNVU#91740661:
- OpenAM Web Policy Agent (OpenAM Consortium Edition) vulnerable to path traversal
2022
- 2022/12/28 JVNVU#90679513:
- Multiple vulnerabilities in Fuji Electric V-SFT and TELLUS
- 2022/12/28 JVNVU#92811888:
- Multiple vulnerabilities in Fuji Electric V-Server
- 2022/12/23 JVNVU#96679793:
- Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service
- 2022/12/19 JVNVU#92689335:
- Use-after-free vulnerability in Omron CX-Drive
- 2022/12/15 JVNVU#96195138:
- Command injection vulnerability in SHARP Multifunctional Products (MFP)
- 2022/12/14 JVNVU#96873821:
- Multiple vulnerabilities in Contec CONPROSYS HMI System (CHS)
- 2022/12/09 JVNVU#97099584:
- Multiple vulnerabilities in Buffalo network devices
- 2022/12/05 JVNVU#93526386:
- Contec SolarView Compact vulnerable to cross-site scripting
- 2022/12/01 JVNVU#94514762:
- Multiple vulnerabilities in UNIMO Technology digital video recorders
- 2022/11/25 JVNVU#92877622:
- Multiple vulnerabilities in OMRON CX-Programmer
- 2022/11/18 JVNVU#90082799:
- Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service
- 2022/11/15 JVNVU#98082029:
- Realtek chip deadlock vulnerability (CVE-2022-34326) in Mitsubishi Electric consumer electronics products
- 2022/11/14 JVNVU#97968855:
- Multiple vulnerabilities in Hitachi Kokusai Network products for monitoring system(Camera, Encoder, Decoder)
- 2022/10/19 JVNVU#97131578:
- Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service
- 2022/10/18 JVNVU#99955870:
- Stack-based buffer overflow vulnerability in Yokogawa Test & Measurement WTViewerE
- 2022/10/12 JVNVU#93424017:
- Multiple vulnerabilities in SVMPC1 and SVMPC2
- 2022/10/07 JVNVU#99960963:
- Multiple vulnerabilities in Trend Micro Deep Security and Cloud One - Workload Security agents for Windows
- 2022/10/04 JVNVU#92805279:
- Multiple vulnerabilities in Buffalo network devices
- 2022/09/15 JVNVU#99326969:
- OpenAM (OpenAM Consortium Edition) vulnerable to open redirect
- 2022/09/01 JVNVU#98305100:
- Multiple vulnerabilities in Contec FLEXLAN FX3000 and FX2000 series
- 2022/08/31 JVNVU#90766406:
- Multiple vulnerabilities in PLANEX Network camera products
- 2022/08/23 JVNVU#96002401:
- Multiple vulnerabilities in PukiWiki
- 2022/08/22 JVNVU#90821877:
- UNIMO Technology digital video recorders vulnerable to missing authentication for critical functions
- 2022/08/22 JVNVU#98291763:
- PLANEX MZK-DP150N contains hidden administrative functionality
- 2022/08/17 JVNVU#93109244:
- Multiple vulnerabilities in Trend Micro Security
- 2022/08/17 JVNVU#96643038:
- Trend Micro Endpoint security products for enterprises vulnerable to Link Following Local Privilege Escalation
- 2022/07/27 JVNVU#93696585:
- CONTEC SolarView Compact vulnerable to insufficient verification in uploading files
- 2022/07/12 JVNVU#97846460:
- U-Boot squashfs filesystem implementation vulnerable to heap-based buffer overflow
- 2022/07/01 JVNVU#97050784:
- Multiple vulnerabilities in OMRON products
- 2022/06/14 JVNVU#96438711:
- Growi vulnerable to weak password requirements
- 2022/06/02 JVNVU#90675050:
- Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service
- 2022/05/26 JVNVU#93134398:
- Multiple vulnerabilities in Fuji Electric V-SFT, V-Server and V-Server Lite
- 2022/05/26 JVNVU#99188133:
- Multiple vulnerabilities in Fuji Electric V-SFT
- 2022/05/26 JVNVU#92327282:
- Multiple vulnerabilities in CONTEC SolarView Compact
- 2022/05/23 JVNVU#92641706:
- Trend Micro Password Manager vulnerable to privilege escalation
- 2022/05/12 JVNVU#93434935:
- Installer of Trend Micro HouseCall for Home Networks may insecurely load Dynamic Link Libraries
- 2022/05/11 JVNVU#95992089:
- Command injection vulnerability in QNAP VioStar series NVR
- 2022/04/06 JVNVU#97833256:
- Trend Micro Antivirus for Mac vulnerable to privilege escalation
- 2022/03/30 JVNVU#99107357:[Critical]
- Trend Micro Apex Central and Trend Micro Apex Central as a Service vulnerable to improper check for file contents
- 2022/03/22 JVNVU#94900322:
- Netcommunity OG410X and OG810X VoIP gateway/Hikari VoIP adapter for business offices vulnerable to OS command injection
- 2022/03/11 JVNVU#99391968:
- Installer of Trend Micro Portable Security may insecurely load Dynamic Link Libraries
- 2022/03/10 JVNVU#96777901:
- Installer of Trend Micro Password Manager may insecurely load Dynamic Link Libraries
- 2022/03/08 JVNVU#90673830:
- Installer of WPS Office for Windows misconfigures the ACL for the installation directory
- 2022/03/04 JVNVU#90121984:
- Multiple vulnerabilities in OMRON CX-Programmer
- 2022/03/02 JVNVU#92972528:
- Multiple vulnerabilities in Trend Micro ServerProtect
- 2022/03/01 JVNVU#96994445:
- Multiples security updates for Trend Micro Endpoint security products for enterprises (March 2022)
- 2022/02/17 JVNVU#95075478:
- Trend Micro Antivirus for MAC vulnerable to privilege escalation
- 2022/01/24 JVNVU#95024141:
- Multiple vulnerabilities in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux
- 2022/01/21 JVNVU#94151526:
- GROWI vulnerable to authorization bypass through user-controlled key
2021
- 2021/12/24 JVNVU#95192472:
- Multiple vulnerabilities in KONICA MINOLTA MFPs and printing systems
- 2021/12/24 JVNVU#92279973:
- Multiple vulnerabilities in IDEC PLCs
- 2021/12/23 JVNVU#94883311:
- TP-Link TL-WR802N V4(JP) vulnerable to OS command injection
- 2021/12/22 JVNVU#95429813:
- Multiple vulnerabilities in QNAP VioStar NVR
- 2021/12/08 JVNVU#98117192:
- Multiple vulnerabilities in Trend Micro Security 2021 family (Consumer)
- 2021/11/30 JVNVU#94527926:
- Multiple vulnerabilities in multiple ELECOM routers
- 2021/11/26 JVNVU#95400836:
- Trend Micro Antivirus for MAC vulnerable to improper access controls
- 2021/11/09 JVNVU#91161784:
- Multiple vulnerabilities in multiple Yamaha routers
- 2021/10/25 JVNVU#92842857:
- Trend Micro Endpoint security products for enterprises vulnerable to privilege escalation
- 2021/10/15 JVNVU#90041391:
- OMRON CX-Supervisor vulnerable to out-of-bounds read
- 2021/09/30 JVNVU#99520559:
- Trend Micro ServerProtect family vulnerable to authentication bypass
- 2021/09/29 JVNVU#99718667:
- Trend Micro HouseCall for Home Networks vulnerable to privilege escalation
- 2021/09/02 JVNVU#94699053:
- Trend Micro Security family vulnerable to improper handling of Directory Junction
- 2021/08/19 JVNVU#95261759:
- Multiple vulnerabilities in Navigate CMS
- 2021/08/18 JVNVU#90091573:
- Incorrect permission assignment vulnerability in multiple Trend Micro Endpoint security products for enterprises
- 2021/08/16 JVNVU#92088210:
- Multiple vulnerabilities in D-Link router DSL-2750U
- 2021/07/29 JVNVU#93876919:[Critical]
- Multiple vulnerabilities in multiple Trend Micro Endpoint security products for enterprises
- 2021/07/16 JVNVU#94115268:
- Trend Micro InterScan Web Security Virtual Appliance (IWSVA) vulnerable to cross-site scripting
- 2021/07/06 JVNVU#94260088:
- Multiple vulnerabilities in Elecom routers
- 2021/07/05 JVNVU#93149000:
- Multiple vulnerabilities in Trend Micro Password Manager
- 2021/06/09 JVNVU#92417259:
- Multiple vulnerabilities in Trend Micro Home Network Security
- 2021/06/07 JVNVU#92413403:
- urllib3 vulnerable to Regular expression Denial-of-Service (ReDoS)
- 2021/05/31 JVNVU#92862829:
- Multiple vulnerabilities in Buffalo WSR-1166DHP3 and WSR-1166DHP4 routers
- 2021/05/31 JVNVU#93332929:
- Multiple security updates for multiple Trend Micro products (May 2021)
- 2021/05/10 JVNVU#97581596:
- Multiple vulnerabilities in Trend Micro Apex One, OfficeScan, and Worry-Free Business Security series
- 2021/04/27 JVNVU#99235714:
- Multiple vulnerabilities in Buffalo broadband routers
- 2021/04/27 JVNVU#90274525:
- Multiple Buffalo network devices contain hidden functionality
- 2021/04/21 JVNVU#93491927:[Critical]
- Multiple vulnerabilities in Apex One, Apex One as a Service and OfficeScan
- 2021/04/20 JVNVU#93009588:
- Memory Exhaustion Denial-of-Service (DoS) vulnerability in Trend Micro Scan Engine
- 2021/04/20 JVNVU#92208501:
- Multiple vulnerabilities in Worry-Free Business Security
- 2021/04/20 JVNVU#97680506:
- Multiple vulnerabilities in Worry-Free Business Security Services
- 2021/04/19 JVNVU#98074915:
- Trend Micro Password Manager may insecurely load Dynamic Link Libraries
- 2021/04/09 JVNVU#92898656:
- D-Link DAP-1880AC contains multiple vulnerabilities
- 2021/03/08 JVNVU#94889258:
- Multiple vulnerabilities in GROWI
- 2021/03/05 JVNVU#99545969:
- Trend Micro Security (Consumer) vulnerable to code injection
- 2021/02/03 JVNVU#98209799:
- Trend Micro HouseCall for Home Networks (Windows Edition) may insecurely load Dynamic Link Libraries
- 2021/02/01 JVNVU#99814910:
- Multiple vulnerabilities in the installer of Trend Micro Security 2020 (Consumer)
- 2021/01/22 JVNVU#92444096:
- TP-Link TL-WR841N V13 (JP) vulnerable to OS command injection
- 2021/01/14 JVNVU#99904867:
- Multiple vulnerabilities in Worry-Free Business Security (WFBS)
- 2021/01/14 JVNVU#92683420:
- Multiple vulnerabilities in Trend Micro Apex One and OfficeScan
- 2021/01/05 JVNVU#98351146:
- Multiple vulnerabilities in InterScan Web Security Virtual Appliance (IWSVA)
2020
- 2020/12/07 JVNVU#97704455:
- ServerProtect for Linux vulnerable to heap-based buffer overflow
- 2020/11/27 JVNVU#98890246:
- Multiple vulnerabilities in Trend Micro InterScan Messaging Virtual Appliance (IMSVA)
- 2020/11/24 JVNVU#94694991:
- Multiple vulnerabilities in Trend Micro Antivirus for Mac
- 2020/11/18 JVNVU#96249940:
- Trend Micro Security 2020 (Consumer) is vulnerable to arbitrary file deletion
- 2020/11/17 JVNVU#99880454:
- Multiple vulnerabilities in KonaWiki3
- 2020/11/06 JVNVU#92053563:
- Multiple vulnerabilities in XOOPS module "XooNIps"
- 2020/10/20 JVNVU#99467898:
- Local File Inclusion vulnerability in OneThird CMS
- 2020/10/06 JVNVU#95014999:
- Trend Micro Antivirus for Mac vulnerable to a privilege escalation
- 2020/09/25 JVNVU#93741515:
- CMONOS.JP vulnerable to cross-site scripting
- 2020/09/23 JVNVU#91216654:
- ServerProtect for Linux vulnerable to OS command injection
- 2020/08/31 JVNVU#90813748:
- Multiple vulnerabilities in Trend Micro Deep Security Manager and Vulnerability Protection
- 2020/08/25 JVNVU#98542645:
- Multiple vulnerabilities in InterScan Web Security Virtual Appliance (IWSVA)
- 2020/08/06 JVNVU#98423028:
- Installer of Trend Micro Security 2020 (Consumer) may insecurely load Dynamic Link Libraries
- 2020/08/06 JVNVU#94105662:
- Trend Micro Security (Consumer) Driver vulnerable to Out-of-bounds Read
- 2020/08/05 JVNVU#99160193:
- Trend Micro anti-rootkit driver improperly validates inputs
- 2020/07/03 JVNVU#95413676:
- Multiple vulnerabilities in TCP/IP function on Mitsubishi Electric GOT2000 series
- 2020/06/30 JVNVU#90307594:
- Multiple vulnerabilities in Mitsubishi Electoric FA Engineering Software
- 2020/06/23 JVNVU#91424496:
- Mitsubishi Electric MELSEC iQ-R, iQ-F, Q, L, and FX series vulnerable to cleartext transmission of sensitive information
- 2020/04/10 JVNVU#99911229:
- Installers of Multiple Trend Micro Products may insecurely load Dynamic Link Libraries
- 2020/04/06 JVNVU#93266623:
- Trend Micro Password Manager may insecurely load Dynamic Link Libraries
- 2020/03/30 JVNVU#91553662:
- Denial-of-service (DoS) vulnerability in Mitsubishi Electric MELSOFT transmission port
- 2020/03/30 JVNVU#99396686:
- A vulnerability in TOYOTA MOTOR's DCU (Display Control Unit)
- 2020/03/18 JVNVU#98100897:[Critical]
- Multiple vulnerabilities in Trend Micro Worry-Free Business Security
- 2020/03/18 JVNVU#91632701:[Critical]
- Multiple vulnerabilities in Trend Micro Apex One and OfficeScan
- 2020/03/12 JVNVU#99239584:
- Rowhammer attacks for TRR equipped DDR4 memory systems
2019
- 2019/11/26 JVNVU#94282488:
- Multiple vulnerabilities in multiple Trend Micro products
- 2019/11/11 JVNVU#91935870:
- Multiple vulnerabilities in Trend Micro Anti-Threat Toolkit (ATTK)
- 2019/11/08 JVNVU#91743132:
- Multiple Trend Micro products vulnerable to directory traversal
- 2019/11/05 JVNVU#90577675:
- Trend Micro Apex One vulnerable to command injection
- 2019/10/29 JVNVU#96213168:
- Trend Micro OfficeScan vulnerable to directory traversal
- 2019/10/25 JVNVU#99059651:
- Multiple Trend Micro products vulnerable to XML external entity injection (XXE)
- 2019/10/01 JVNVU#94678942:
- FON routers may behave as an open resolver
- 2019/09/10 JVNVU#94051551:
- Multiple Trend Micro products vulnerable to directory traversal
- 2019/08/07 JVNVU#97511331:
- Multiple vulnerabilities in multiple Canon digital cameras
- 2019/08/07 JVNVU#93628467:
- WonderCMS vulnerable to directory traversal
- 2019/03/01 JVNVU#95147316:
- Multiple vulnerabilities in Trend Micro ScanMail for Exchange
- 2019/03/01 JVNVU#97891221:
- Multiple vulnerabilities in Trend Micro Mobile Security
- 2019/03/01 JVNVU#99357827:
- Smart Protection Server vulnerable to OS command injection
- 2019/03/01 JVNVU#91054129:
- Multiple vulnerabilities in Trend Micro OfficeScan
2018
- 2018/11/16 JVNVU#91640357:
- みずほ銀行 みずほダイレクトアプリ for Android fails to verify SSL server certificates
- 2018/11/07 JVNVU#98026636:
- Multiple vulnerabilities in LogonTracer
- 2018/01/30 JVNVU#95587881:
- Deep Discovery Email Inspector vulnerable to arbitrary code execution
- 2018/01/16 JVNVU#95303354:
- Multiple vulnerabilities in Deep Discovery Email Inspector
- 2018/01/16 JVNVU#91290407:
- Trend Micro Control Manager vulnerable to SQL injection
2017
- 2017/12/26 JVNVU#98736894:
- Multiple vulnerabilities in InterScan Messaging Security Virtual Appliance
- 2017/12/08 JVNVU#95124098:
- Fluentd vulenrable to escape sequence injection
- 2017/11/27 JVNVU#94198685:
- QND Advance/Standard vulnerable to directory traversal
- 2017/11/14 JVNVU#94371484:
- Packetbeat vulnerable to denial-of-service (DoS)
- 2017/11/01 JVNVU#94207433:
- Multiple vulnerabilities in Trend Micro Control Manager
- 2017/10/24 JVNVU#93703434:
- Memory corruption vulnerability in Rakuraku Hagaki and Rakuraku Hagaki Select for Ichitaro
- 2017/10/16 JVNVU#91625548:
- AssetView and AssetView PLATINUM contain multiple vulnerabilities
- 2017/09/25 JVNVU#90916766:
- jwt-scala fails to verify token signatures
- 2017/09/20 JVNVU#90447827:
- InterScan Web Security Virtual Appliance vulnerable to code injection
- 2017/09/20 JVNVU#93240386:
- Multiple vulnerabilities in ServerProtect for Linux
- 2017/08/01 JVNVU#91587298:
- Multiple vulnerabilities in MaLion
- 2017/07/20 JVNVU#98807587:
- gSOAP vulnerable to stack-based buffer overflow
- 2017/07/14 JVNVU#93377948:
- Multiple vulnerabilities in "File Transfer Web Service" of AssetView for MacOS
- 2017/02/27 JVNVU#98045645:
- Ichitaro series vulnerable to heap-based buffer overflow
- 2017/01/19 JVNVU#91417143:
- Multiple vulnerabilities in GigaCC OFFICE
2016
- 2016/12/06 JVNVU#92900492:
- 三菱東京UFJ銀行 for Android vulnerable to SSL/TLS downgrade attack
- 2016/11/29 JVNVU#96435227:
- Multiple SONY network cameras vulnerable to sensitive information disclosure
- 2016/07/01 JVNVU#95113461:
- ManageEngine Password Manager Pro vulnerable to cross-site request forgery
- 2016/05/19 JVNVU#97339542:
- SaAT Netizen fails to properly verify downloaded installation and update files
- 2016/05/16 JVNVU#90405898:
- ManageEngine Password Manager Pro fails to restrict access permissions
- 2016/05/16 JVNVU#92116866:[Critical]
- Keitai Kit for Movable Type vulnerable to OS command injection