Trend Micro ServerProtect Authentication Bypass Vulnerability [CVE-2021-36745]
CVE number = CVE-2021-36745
Trend Micro has released new Critical Patches for Trend Micro ServerProtect. These patches resolve a critical authentication bypass vulnerability.
A critical vulnerability in Trend Micro ServerProtect could allow a remote attacker to bypass authentication on affected installations.
Affected Version(s)
| PRODUCT | AFFECTED VERSION(S) | PLATFORM | LANGUAGE(S) |
|---|---|---|---|
| ServerProtect for Storage (SPFS) | 6.0 | Windows | English |
| ServerProtect for EMC Celerra (SPEMC) | 5.8 | EMC Celerra | English |
| ServerProtect for Network Appliance Filers (SPNAF) | 5.8 | NetApp | English |
| ServerProtect for Microsoft Windows / Novell Netware (SPNT) | 5.8 | Windows | English |
Solution
Trend Micro has released the following solutions to address the issue:
| PRODUCT | UPDATED VERSION | NOTES | PLATFORM | AVAILABILITY |
|---|---|---|---|---|
| SPFS | 6.0 CP1284 | Readme | Windows | Now Available |
| SPEMC | 5.8 CP1577 | Readme | EMC Celerra | Now Available |
| SPNAF | 5.8 CP1299 | Readme | NetApp | Now Available |
| SPNT | 5.8 CP1575 | Readme | Windows | Now Available |
Duncan is a technology professional with over 20 years experience of working in various IT roles. He has a interest in cyber security, and has a wide range of other skills in radio, electronics and telecommunications.