The vulnerability of the Apex One NT RealTime Scan service (ntrtscan.exe), an antivirus software solution provided by Trend Micro’s Apex One, exposes the system to potential threats. This vulnerability allows attackers to gain increased privileges.

🗓️ 03 Mar 2023 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 2 Views

Apex One Scan service ntrtscan.exe enables privilege escalation from incorrect link definition.

Reporter	Title	Published	Views	Family All 14
Circl	CVE-2023-25146	11 Mar 202300:27	–	circl
CNNVD	Trend Micro Apex One 后置链接漏洞	10 Mar 202300:00	–	cnnvd
CVE	CVE-2023-25146	7 Mar 202322:19	–	cve
Cvelist	CVE-2023-25146	7 Mar 202322:19	–	cvelist
EUVD	EUVD-2023-29124	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service	2 Mar 202308:33	–	jvn
NVD	CVE-2023-25146	10 Mar 202321:15	–	nvd
OSV	CVE-2023-25146	10 Mar 202321:15	–	osv
Prion	Design/Logic Flaw	10 Mar 202321:15	–	prion
Positive Technologies	PT-2023-1525 · Trend Micro · Trend Micro Apex One	9 Feb 202300:00	–	ptsecurity

Source	Link
success	www.success.trendmicro.com/dcx/s/solution/000292209
egfincirt	www.egfincirt.org.eg/trend-micro-security-update-12-february-2023/
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2023020957
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-23-172/
web	www.web.nvd.nist.gov/view/vuln/detail
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-23-172/

03 Mar 2023 00:00Current

7.2High risk

Vulners AI Score7.2

CVSS 26.8

CVSS 37.8

EPSS0.0039

Apex One RealTime Scan ntrtscan executable Privilege escalation Incorrect link definition