Lucene search

K
cvelistTrendmicroCVELIST:CVE-2023-32529
HistoryJun 26, 2023 - 9:54 p.m.

CVE-2023-32529

2023-06-2621:54:23
trendmicro
www.cve.org
1
trend micro
apex central
sql injection
remote code execution
authentication
cve-2023-32529
cve-2023-32530

9.4 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.6%

Vulnerable modules of Trend Micro Apex Central (on-premise) contain vulnerabilities which would allow authenticated users to perform a SQL injection that could lead to remote code execution.

Please note: an attacker must first obtain authentication on the target system in order to exploit these vulnerabilities.

This is similar to, but not identical to CVE-2023-32530.

CNA Affected

[
  {
    "vendor": "Trend Micro, Inc.",
    "product": "Trend Micro Apex Central",
    "versions": [
      {
        "version": "2019 (8.0)",
        "status": "affected",
        "versionType": "semver",
        "lessThan": "8.0.0.6394"
      }
    ]
  }
]

9.4 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.6%

Related for CVELIST:CVE-2023-32529