Vulnerability Monitor

The vendors, products, and vulnerabilities you care about
officescan Vendor: trendmicro

About This Product

officescan is a software product offered by trendmicro. This product is widely deployed in production environments, making vulnerability monitoring essential for organizations relying on it. Security vulnerabilities in products of this category can affect system availability, data confidentiality, and integrity across entire networks. The significant number of reported vulnerabilities indicates this product has received substantial security scrutiny and community focus over time. Regular assessment of known vulnerabilities and timely patching are fundamental components of responsible system administration for any deployment of this software.

Vulnerability Landscape Summary

SecUtils has identified 71 known vulnerabilities affecting trendmicro officescan. This includes 8 critical-severity issues and 28 high-severity issues that warrant immediate attention. Vulnerabilities in this product have been disclosed spanning from 2008 to 2021, indicating a sustained research interest and ongoing security attention. 34 medium-severity issues and 1 low-severity issue complete the vulnerability landscape. Organizations should prioritize patching based on deployment context, asset criticality, and exploitation likelihood rather than severity alone.

Known Vulnerabilities
ID Date Published Last Modified Severity (CVSSv3) Severity (CVSSv2) Exploit Available
CVE-2008-2433 2008-08-27 2025-04-09 9.8 7.5 Likely
CVE-2009-1435 2009-04-27 2025-04-09 - 2.1 Unknown
CVE-2010-0564 2010-02-10 2025-04-11 - 5.0 Likely
CVE-2016-1223 2016-06-19 2025-04-12 5.3 5.0 Likely
CVE-2017-5481 2017-05-03 2025-04-20 8.8 4.0 Likely
CVE-2017-8801 2017-05-05 2025-04-20 6.1 4.3 Likely
CVE-2017-11393 2017-08-03 2025-04-20 9.8 10.0 Likely
CVE-2017-11394 2017-08-03 2025-04-20 9.8 10.0 Likely
CVE-2017-14083 2017-10-06 2025-04-20 7.5 5.0 Likely
CVE-2017-14084 2017-10-06 2025-04-20 8.1 6.8 Likely
CVE-2017-14085 2017-10-06 2025-04-20 5.3 5.0 Likely
CVE-2017-14086 2017-10-06 2025-04-20 7.5 7.8 Likely
CVE-2017-14087 2017-10-06 2025-04-20 7.5 5.0 Likely
CVE-2017-14088 2017-10-06 2025-04-20 7.0 6.9 Unknown
CVE-2017-14089 2017-10-06 2025-04-20 9.8 7.5 Likely
CVE-2018-6218 2018-02-16 2024-11-21 7.0 5.1 Unknown
CVE-2018-10358 2018-06-08 2024-11-21 6.3 5.4 Unknown
CVE-2018-10359 2018-06-08 2024-11-21 6.3 5.4 Unknown
CVE-2018-10505 2018-06-08 2024-11-21 6.3 5.4 Unknown
CVE-2018-10506 2018-06-08 2024-11-21 4.7 1.9 Unknown
CVE-2018-10507 2018-06-12 2024-11-21 4.4 2.1 Unknown
CVE-2018-10508 2018-06-12 2024-11-21 8.8 6.5 Likely
CVE-2018-10509 2018-06-12 2024-11-21 8.8 4.0 Likely
CVE-2018-3608 2018-07-06 2024-11-21 9.8 10.0 Likely
CVE-2018-18331 2018-12-21 2024-11-21 7.5 5.0 Likely
CVE-2018-18332 2018-12-21 2024-11-21 7.5 5.0 Likely
CVE-2019-9489 2019-04-05 2024-11-21 7.5 5.0 Likely
CVE-2019-9492 2019-07-26 2024-11-21 7.8 4.6 Unknown
CVE-2019-18187 2019-10-28 2025-10-30 7.5 5.0 Likely
CVE-2019-18189 2019-10-28 2024-11-21 9.8 10.0 Likely
CVE-2019-19691 2019-12-20 2024-11-21 4.9 4.0 Likely
CVE-2019-14688 2020-02-20 2024-11-21 7.0 5.1 Unknown
CVE-2020-8467 2020-03-18 2025-10-31 8.8 6.5 Likely
CVE-2020-8468 2020-03-18 2025-10-31 8.8 6.5 Likely
CVE-2020-8470 2020-03-18 2024-11-21 7.5 9.4 Likely
CVE-2020-8598 2020-03-18 2024-11-21 9.8 10.0 Likely
CVE-2020-8599 2020-03-18 2025-10-31 9.8 10.0 Likely
CVE-2020-8607 2020-08-05 2024-11-21 6.7 7.2 Unknown
CVE-2020-24559 2020-09-01 2024-11-21 7.8 7.2 Unknown
CVE-2020-24562 2020-09-29 2024-11-21 7.8 7.2 Unknown
CVE-2020-28573 2020-12-01 2024-11-21 5.3 5.0 Likely
CVE-2020-28576 2020-12-01 2024-11-21 5.3 5.0 Likely
CVE-2020-28577 2020-12-01 2024-11-21 5.3 5.0 Likely
CVE-2020-28582 2020-12-01 2024-11-21 5.3 5.0 Likely
CVE-2020-28583 2020-12-01 2024-11-21 5.3 5.0 Likely
CVE-2021-25228 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25229 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25230 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25231 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25232 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25233 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25234 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25235 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25236 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25238 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25239 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25240 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25242 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25243 2021-02-04 2024-11-21 5.3 5.0 Likely
CVE-2021-25246 2021-02-04 2024-11-21 6.5 6.4 Likely
CVE-2021-25248 2021-02-04 2024-11-21 5.5 2.1 Unknown
CVE-2021-25249 2021-02-04 2024-11-21 7.8 7.2 Unknown
CVE-2021-25252 2021-03-03 2024-11-21 5.5 4.9 Unknown
CVE-2021-25250 2021-04-13 2024-11-21 7.8 7.2 Unknown
CVE-2021-25253 2021-04-13 2024-11-21 7.8 7.2 Unknown
CVE-2021-28645 2021-04-13 2024-11-21 7.8 7.2 Unknown
CVE-2021-28646 2021-04-13 2024-11-21 5.5 2.1 Unknown
CVE-2021-36741 2021-07-29 2025-10-31 8.8 6.5 Likely
CVE-2021-36742 2021-07-29 2025-10-31 7.8 4.6 Unknown
CVE-2021-32464 2021-08-04 2024-11-21 7.8 7.2 Unknown
CVE-2021-32465 2021-08-04 2024-11-21 8.8 6.5 Likely

How SecUtils Interprets Product Data

SecUtils normalizes and enriches National Vulnerability Database (NVD) records for trendmicro officescan by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and structuring the data for rapid analysis and asset correlation. For every vulnerability listed, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference information to enable organizations to prioritize patching and risk assessment efficiently. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for vulnerability management and security operations.