Unrated severityNVD Advisory· Published Mar 7, 2023· Updated Mar 5, 2025
CVE-2023-25148
CVE-2023-25148
Description
A security agent link following vulnerability in Trend Micro Apex One could allow a local attacker to exploit the vulnerability by changing a specific file into a pseudo-symlink, allowing privilege escalation on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Trend Micro, Inc./Trend Micro Apex Onev5Range: 2019 (14.0)
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.