The vulnerability of the NT RealTime Scan Service, a scanning service of the anti-virus software Apex One, allows a hacker to elevate their privileges or execute arbitrary code.

🗓️ 26 Sep 2022 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

NT RealTime Scan Service flaw in Apex One enables privilege escalation or arbitrary code execution via link check.

Reporter	Title	Published	Views	Family All 15
ATTACKERKB	CVE-2022-40142	19 Sep 202218:15	–	attackerkb
Circl	CVE-2022-40142	19 Sep 202222:38	–	circl
CNNVD	Trend Micro Apex One 安全漏洞	14 Sep 202200:00	–	cnnvd
CVE	CVE-2022-40142	19 Sep 202218:01	–	cve
Cvelist	CVE-2022-40142	19 Sep 202218:01	–	cvelist
EUVD	EUVD-2022-43460	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	JVN#36454862: Multiple vulnerabilities in Trend Micro Apex One and Trend Micro Apex One as a Service	14 Sep 202200:00	–	jvn
Japan Vulnerability Notes	Multiple vulnerabilities in Trend Micro Apex One and Trend Micro Apex One as a Service	14 Sep 202209:15	–	jvn
NCSC	Vulnerabilities fixed in Trend Micro Apex One	14 Sep 202200:00	–	ncsc
NVD	CVE-2022-40142	19 Sep 202218:15	–	nvd

Source	Link
vuldb	www.vuldb.com/
success	www.success.trendmicro.com/solution/000291528
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-22-1190/
safe-surf	www.safe-surf.ru/upload/VULN/VULN-20220914.40.pdf
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2022091318
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-40142
web	www.web.nvd.nist.gov/view/vuln/detail
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-22-1190/
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-CAN-16691/

26 Sep 2022 00:00Current

CVSS 26.8

CVSS 37.8

EPSS0.00099

RealTime Scan Service Apex One Privilege escalation Arbitrary code execution Link check