Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistTrendmicroCVELIST:CVE-2022-24679
HistoryFeb 24, 2022 - 2:45 a.m.

CVE-2022-24679

2022-02-2402:45:51
trendmicro
www.cve.org
1
cve-2022-24679
local privilege escalation
trend micro apex one
trend micro worry-free business security 10.0 sp1
writable folder
arbitrary location
escalate privileges
low-privileged code
vulnerability

EPSS

0

Percentile

15.9%

JSON

A security link following local privilege escalation vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service, Trend Micro Worry-Free Business Security 10.0 SP1 and Trend Micro Worry-Free Business Security Services agents could allow a local attacker to create an writable folder in an arbitrary location and escalate privileges affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CNA Affected

[
  {
    "product": "Trend Micro Apex One",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "2019, SaaS"
      }
    ]
  },
  {
    "product": "Trend Micro Worry-Free Business Security",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "10.0 SP1, Services (SaaS)"
      }
    ]
  }
]

Related

nvd 1
cve 1
zdi 1
prion 1
nvd
nvd
CVE-2022-24679
2022-02-24 03:15:43
cve
cve
CVE-2022-24679
2022-02-24 03:15:43
zdi
zdi
Trend Micro Apex One Security Agent Link Following Local Privilege Escalation Vulnerability
2022-02-16 00:00:00
prion
prion
Privilege escalation
2022-02-24 03:15:00

EPSS

0

Percentile

15.9%

JSON
Related for CVELIST:CVE-2022-24679
nvd1cve1zdi1prion1