Tracked as CVE-2021-36745 and featuring a CVSS score of 9.8, the security hole could be exploited by remote attackers to completely bypass authentication on a vulnerable system.

The enterprise-grade real-time malware detection solution provides virus, spyware and rootkit protection for servers, while also automating security operations. Also packing cleanup capabilities, the software features support for multiple platforms.

The newly addressed vulnerability was reported to Trend Micro in April. It was discovered by Yuto Maeda from Cyber Defense Institute and reported through Trend Micro’s Zero Day Initiative (ZDI).