A security agent link following vulnerability in Trend Micro Apex One could allow a local attacker to exploit the vulnerability by changing a specific file into a pseudo-symlink, allowing privilege escalation on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: trendmicro

Published: 2023-03-07T22:20:13.080Z

Updated: 2024-08-02T11:18:35.576Z

Reserved: 2023-02-03T15:46:02.643Z

Link: CVE-2023-25148

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-03-10T21:15:15.257

Modified: 2024-11-21T07:49:12.047

Link: CVE-2023-25148

cve-icon Redhat

No data.