Lucene search

K
cvelistTrendmicroCVELIST:CVE-2022-44649
HistoryNov 21, 2022 - 5:57 p.m.

CVE-2022-44649

2022-11-2117:57:01
trendmicro
www.cve.org
vulnerability
unauthorized change prevention
trend micro apex one
elevate privileges

EPSS

0

Percentile

15.9%

An out-of-bounds access vulnerability in the Unauthorized Change Prevention service of Trend Micro Apex One and Apex One as a Service could allow a local attacker to elevate privileges on affected installations.

Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CNA Affected

[
  {
    "vendor": "Trend Micro, Inc.",
    "product": "Trend Micro Apex One",
    "versions": [
      {
        "version": "On Premise (14.0)",
        "status": "affected",
        "lessThan": "14.0.0.11126",
        "versionType": "semver"
      },
      {
        "version": "SaaS (14.0)",
        "status": "affected",
        "lessThan": "14.0.11789",
        "versionType": "semver"
      }
    ]
  }
]

EPSS

0

Percentile

15.9%

Related for CVELIST:CVE-2022-44649