CVE-2019-19691

A vulnerability in Trend Micro Apex One and OfficeScan XG could allow an attacker to expose a masked credential key by manipulating page elements using development tools. Note that the attacker must already have admin/root privileges on the product console to exploit this vulnerability.

Published: Dec 20, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-19691
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.9
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
trendmicro / apex_one	2019	2019.x
trendmicro / officescan	xg	xg.x

https://success.trendmicro.com/solution/000159568

Vulnerability Database

289,784

CVE-2019-19691