A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to escalate privileges and run arbitrary code in the context of root. Please note: an attacker must first obtain access to the target agent in an un-activated and unconfigured state in order to exploit this vulnerability.
[
{
"product": "Trend Micro Deep Security Agent for Linux",
"vendor": "Trend Micro",
"versions": [
{
"status": "affected",
"version": "20, 12, 11, 10"
}
]
}
]