An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free Business Security 10.0 SP1 could allow an unauthenticated user to obtain information about a specific configuration download file.
https://www.zerodayinitiative.com/advisories/ZDI-21-108/
https://success.trendmicro.com/solution/000284206