An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local attacker to escalate their privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This is a similar, but not identical vulnerability as CVE-2023-34145.
History

Thu, 05 Dec 2024 15:15:00 +0000

Type Values Removed Values Added
First Time appeared Trend Micro Inc
Trend Micro Inc trend Micro Apex One
CPEs cpe:2.3:a:trend_micro_inc:trend_micro_apex_one:*:*:*:*:*:*:*:*
Vendors & Products Trend Micro Inc
Trend Micro Inc trend Micro Apex One
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: trendmicro

Published: 2023-06-26T21:57:41.700Z

Updated: 2024-12-05T14:38:19.835Z

Reserved: 2023-05-26T18:41:36.332Z

Link: CVE-2023-34144

cve-icon Vulnrichment

Updated: 2024-08-02T16:01:54.224Z

cve-icon NVD

Status : Modified

Published: 2023-06-26T22:15:11.107

Modified: 2024-11-21T08:06:38.637

Link: CVE-2023-34144

cve-icon Redhat

No data.