A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations. Please note: a local attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This is similar to, but not identical to CVE-2023-32555.
History

Wed, 04 Dec 2024 22:15:00 +0000

Type Values Removed Values Added
First Time appeared Trend Micro Inc
Trend Micro Inc trend Micro Apex One
CPEs cpe:2.3:a:trend_micro_inc:trend_micro_apex_one:*:*:*:*:*:*:*:*
Vendors & Products Trend Micro Inc
Trend Micro Inc trend Micro Apex One
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: trendmicro

Published: 2023-06-26T21:56:27.443Z

Updated: 2024-12-04T21:25:50.212Z

Reserved: 2023-05-09T18:13:30.118Z

Link: CVE-2023-32554

cve-icon Vulnrichment

Updated: 2024-08-02T15:18:37.803Z

cve-icon NVD

Status : Modified

Published: 2023-06-26T22:15:10.847

Modified: 2024-11-21T08:03:35.353

Link: CVE-2023-32554

cve-icon Redhat

No data.