Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistTrendmicroCVELIST:CVE-2022-24680
HistoryFeb 24, 2022 - 2:45 a.m.

CVE-2022-24680

2022-02-2402:45:52
trendmicro
www.cve.org

0.0004 Low

EPSS

Percentile

16.1%

JSON

A security link following local privilege escalation vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service, Trend Micro Worry-Free Business Security 10.0 SP1 and Trend Micro Worry-Free Business Security Services agents could allow a local attacker to create a mount point and leverage this for arbitrary folder deletion, leading to escalated privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CNA Affected

[
  {
    "product": "Trend Micro Apex One",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "2019, SaaS"
      }
    ]
  },
  {
    "product": "Trend Micro Worry-Free Business Security",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "10.0 SP1, Services (SaaS)"
      }
    ]
  }
]

Related

zdi 1
nvd 1
cve 1
prion 1
zdi
zdi
Trend Micro Apex One Security Agent Link Following Local Privilege Escalation Vulnerability
2022-02-16 00:00:00
nvd
nvd
CVE-2022-24680
2022-02-24 03:15:43
cve
cve
CVE-2022-24680
2022-02-24 03:15:43
prion
prion
Privilege escalation
2022-02-24 03:15:00

0.0004 Low

EPSS

Percentile

16.1%

JSON
Related for CVELIST:CVE-2022-24680
zdi1nvd1cve1prion1