CyberSec.Space Logo
Back to CVE Browser

CVE-2019-18187

Known Exploited (CISA KEV)HIGH
7.5
CVSS Severity Score
EPSS Score57.6960%
EPSS Percentile89.11th
PublishedOct 28, 2019
Last ModifiedOct 30, 2025

Vulnerability Description

Trend Micro OfficeScan versions 11.0 and XG (12.0) could be exploited by an attacker utilizing a directory traversal vulnerability to extract files from an arbitrary zip file to a specific folder on the OfficeScan server, which could potentially lead to remote code execution (RCE). The remote process execution is bound to a web service account, which depending on the web platform used may have restricted permissions. An attempted attack requires user authentication.

Affected Platforms (CPE)

πŸ“¦
Trendmicro

Officescan

= 11.0
πŸ“¦
Trendmicro

Officescan

= xg
πŸ“¦
Trendmicro

Officescan

= xg

References & Advisories

πŸ”— https://success.trendmicro.com/solution/000151730
πŸ”— https://success.trendmicro.com/solution/000151730
πŸ”— https://web.archive.org/web/20200215171235/https://success.trendmicro.com/solution/000151730
πŸ”— https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-18187

Related Vulnerabilities

CVE-2007-345410.0

Stack-based buffer overflow in CGIOCommon.dll before 8.0.0.1042 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote atta...

CVE-2007-345510.0

cgiChkMasterPwd.exe before 8.0.0.142 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to bypass the passwor...

CVE-2006-138110.0

Trend Micro OfficeScan 5.5, and probably other versions before 6.5, uses insecure DACLs for critical files, which allows local use...

CVE-2008-243710.0

Stack-based buffer overflow in cgiRecvFile.exe in Trend Micro OfficeScan 7.3 patch 4 build 1362 and other builds, OfficeScan 8.0 a...