VYPR

Apex One as a Service

by Trend Micro

CVEs (43)

  • CVE-2023-32557CriJun 26, 2023
    risk 0.64cvss 9.8epss 0.01

    A path traversal vulnerability in the Trend Micro Apex One and Apex One as a Service could allow an unauthenticated attacker to upload an arbitrary file to the Management Server which could lead to remote code execution with system privileges.

  • CVE-2022-40144CriSep 19, 2022
    risk 0.64cvss 9.8epss 0.02

    A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product's login authentication by falsifying request parameters on affected installations.

  • CVE-2022-40139HigKEVSep 19, 2022
    risk 0.59cvss 7.2epss 0.03

    Improper validation of some components used by the rollback mechanism in Trend Micro Apex One and Trend Micro Apex One as a Service clients could allow a Apex One server administrator to instruct affected clients to download an unverified rollback package, which could lead to…

  • CVE-2024-36304HigJun 10, 2024
    risk 0.51cvss 7.8epss 0.00

    A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the…

  • CVE-2023-34148HigJun 26, 2023
    risk 0.51cvss 7.8epss 0.00

    An exposed dangerous function vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local attacker to escalate privileges and write an arbitrary value to specific Trend Micro agent subkeys on affected installations. Please note: an…

  • CVE-2023-34147HigJun 26, 2023
    risk 0.51cvss 7.8epss 0.00

    An exposed dangerous function vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local attacker to escalate privileges and write an arbitrary value to specific Trend Micro agent subkeys on affected installations. Please note: an…

  • CVE-2023-34146HigJun 26, 2023
    risk 0.51cvss 7.8epss 0.00

    An exposed dangerous function vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local attacker to escalate privileges and write an arbitrary value to specific Trend Micro agent subkeys on affected installations. Please note: an…

  • CVE-2023-34145HigJun 26, 2023
    risk 0.51cvss 7.8epss 0.00

    An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local attacker to escalate their privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged…

  • CVE-2023-34144HigJun 26, 2023
    risk 0.51cvss 7.8epss 0.00

    An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local attacker to escalate their privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged…

  • CVE-2022-45798HigDec 24, 2022
    risk 0.51cvss 7.8epss 0.00

    A link following vulnerability in the Damage Cleanup Engine component of Trend Micro Apex One and Trend Micro Apex One as a Service could allow a local attacker to escalate privileges by creating a symbolic link and abusing the service to delete a file. Please note: an…

  • CVE-2022-44653HigDec 12, 2022
    risk 0.51cvss 7.8epss 0.01

    A security agent directory traversal vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the…

  • CVE-2022-44652HigDec 12, 2022
    risk 0.51cvss 7.8epss 0.00

    An improper handling of exceptional conditions vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code…

  • CVE-2022-44650HigDec 12, 2022
    risk 0.51cvss 7.8epss 0.00

    A memory corruption vulnerability in the Unauthorized Change Prevention service of Trend Micro Apex One and Apex One as a Service could allow a local attacker to elevate privileges on affected installations. Please note: an attacker must first obtain the ability to execute…

  • CVE-2022-44649HigDec 12, 2022
    risk 0.51cvss 7.8epss 0.00

    An out-of-bounds access vulnerability in the Unauthorized Change Prevention service of Trend Micro Apex One and Apex One as a Service could allow a local attacker to elevate privileges on affected installations. Please note: an attacker must first obtain the ability to…

  • CVE-2022-40142HigSep 19, 2022
    risk 0.51cvss 7.8epss 0.00

    A security link following local privilege escalation vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service agents could allow a local attacker to create a writable folder in an arbitrary location and escalate privileges on affected installations. Please…

  • CVE-2022-30701HigMay 27, 2022
    risk 0.51cvss 7.8epss 0.00

    An uncontrolled search path element vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to craft a special configuration file to load an untrusted library with escalated privileges on affected installations. Please note: an attacker must…

  • CVE-2022-30700HigMay 27, 2022
    risk 0.51cvss 7.8epss 0.00

    An incorrect permission assignment vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to load a DLL with escalated privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged…

  • CVE-2021-42105HigOct 21, 2021
    risk 0.51cvss 7.8epss 0.00

    Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must…

  • CVE-2021-42103HigOct 21, 2021
    risk 0.51cvss 7.8epss 0.00

    An uncontrolled search path element vulnerabilities in Trend Micro Apex One and Apex One as a Service could allow a local attacker to escalate privileges on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system in…

  • CVE-2021-42102HigOct 21, 2021
    risk 0.51cvss 7.8epss 0.00

    An uncontrolled search path element vulnerabilities in Trend Micro Apex One and Apex One as a Service agents could allow a local attacker to escalate privileges on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target…

Page 1 of 3