A path traversal vulnerability in the Trend Micro Apex One and Apex One as a Service could allow an unauthenticated attacker to upload an arbitrary file to the Management Server which could lead to remote code execution with system privileges.
History

Wed, 04 Dec 2024 22:15:00 +0000

Type Values Removed Values Added
First Time appeared Trend Micro Inc
Trend Micro Inc trend Micro Apex One
CPEs cpe:2.3:a:trend_micro_inc:trend_micro_apex_one:*:*:*:*:*:*:*:*
Vendors & Products Trend Micro Inc
Trend Micro Inc trend Micro Apex One
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: trendmicro

Published: 2023-06-26T21:57:00.765Z

Updated: 2024-12-04T21:16:16.359Z

Reserved: 2023-05-09T19:01:16.631Z

Link: CVE-2023-32557

cve-icon Vulnrichment

Updated: 2024-08-02T15:18:37.609Z

cve-icon NVD

Status : Modified

Published: 2023-06-26T22:15:10.977

Modified: 2024-11-21T08:03:35.743

Link: CVE-2023-32557

cve-icon Redhat

No data.