vulnerability

Trend Micro Apex One: CVE-2020-28583:

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:P/I:N/A:N)	Nov 17, 2020	Apr 29, 2025	Apr 6, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

Nov 17, 2020

Added

Apr 29, 2025

Modified

Apr 6, 2026

Description

An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal version, build and patch information.

Solution

trend-micro-apex-one-upgrade-latest

References

CVE-2020-28583
https://attackerkb.com/topics/CVE-2020-28583
https://success.trendmicro.com/solution/000281947
https://success.trendmicro.com/solution/000281949
https://www.zerodayinitiative.com/advisories/ZDI-20-1387/
https://euvd.enisa.europa.eu/vulnerability/EUVD-2020-20981

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report