CVE-2019-18187

CVE Database · CVE-2019-18187

CVE-2019-18187

· HIGHAnalyzed

CVSS v3.1

7.5

EPSS

25.12%

Published

Oct 28, 2019

Modified

Oct 30, 2025

CISA Known Exploited Vulnerability

Added: 2021-11-03 · Due: 2022-05-03

Apply updates per vendor instructions.

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Trend Micro OfficeScan versions 11.0 and XG (12.0) could be exploited by an attacker utilizing a directory traversal vulnerability to extract files from an arbitrary zip file to a specific folder on the OfficeScan server, which could potentially lead to remote code execution (RCE). The remote process execution is bound to a web service account, which depending on the web platform used may have restricted permissions. An attempted attack requires user authentication.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Weaknesses (CWE)

CWE-22CWE-22

Affected Products (4)

trendmicro · officescanvulnerable

microsoft · windows

References (4)

https://success.trendmicro.com/solution/000151730

Broken LinkVendor Advisory

https://success.trendmicro.com/solution/000151730

Broken LinkVendor Advisory

https://web.archive.org/web/20200215171235/https://success.trendmicro.com/solution/000151730

Vendor Advisory

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-18187

US Government Resource

KEV Catalog EPSS Scores Vendors All CVEs