Latest Security News about trend micro

Trend Micro Worry-Free Business Security (9.0, 9.5, 10.0) is affected by a directory traversal vulnerability

Overview : Trend Micro Worry-Free Business Security (9.0, 9.5, 10.0) is affected by a directory traversal vulnerability that could allow an attacker to manipulate a key file to bypass authentication.   Trend Micro Worry-Free Business Security Directory Traversal Authentication Bypass Vulnerability ZDI-20-307 ZDI-CAN-10073 CVE ID CVE-2020-8600 CVSS SCORE 8.6, (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H) AFFECTED VENDORS Trend Micro AFFECTED PRODUCTS [...]

Trend Micro Anti-Threat Toolkit (ATTK) RCE Vulnerability

Overview : Vulnerable versions of ATTK may allow an attacker to place malicious files in the same directory, potentially leading to arbitrary remote code execution (RCE) when executed. Affected Product(s) : Anti-Threat Toolkit (ATTK) 1.62.0.1218 and below Vulnerability Details : CVE ID : CVE-2019-9491 CVSS 3.0 Score(s): 7.5 – AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H Solution : Exploiting these type of […]

Fuji Electric V-Server Lite all versions prior to 4.0.9.0 contains a heap based buffer overflow. The buffer allocated to read data, when parsing VPR files, is too small.

Overview : Fuji Electric V-Server Lite all versions prior to 4.0.9.0 contains a heap based buffer overflow. The buffer allocated to read data, when parsing VPR files, is too small. ICS Advisory (ICSA-20-098-04) Fuji Electric V-Server Lite Legal Notice All information products included in https://us-cert.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security [...]

Cisco Data Center Network Manager Vulnerabilities

Summary Multiple vulnerabilities in the authentication mechanisms of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrative privileges on an affected device. This advisory is available at the following link: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200102-dcnm-auth-bypass Details Three vulnerabilities in the authentication mechanisms of Cisco Data Center Network […]

IoT WAF

Securing IoT APIs Prophaze Raspberry PI based custom appliance can be hooked at the gateway of your IoT interface . It can be any control system , let it be CCTV Camera's , or a Advanced Data fetching and parsing device . Prophaze can secure your api end points against OWASP Top 10 and many [...]