Lucene search
HistorySep 19, 2022 - 6:15 p.m.
CVE-2022-40141
vulnerability
trend micro
apex one
communication interception
identification attributes
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.002
Percentile
51.4%
A vulnerability in Trend Micro Apex One and Apex One as a Service could allow an attacker to intercept and decode certain communication strings that may contain some identification attributes of a particular Apex One server.
Affected configurations
Node
trendmicroapex_oneMatch-saas
ORtrendmicroapex_oneMatch2019
microsoftwindowsMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| trendmicro | apex_one | - | cpe:2.3:a:trendmicro:apex_one:-:*:*:*:*:saas:*:* |
| trendmicro | apex_one | 2019 | cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:*:*:*:* |
| microsoft | windows | - | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2022-09-19 18:15:00
cvelist
cvelist
CVE-2022-40141
2022-09-19 18:01:03
cve
cve
CVE-2022-40141
2022-09-19 18:15:10
nessus
nessus
Trend Micro Apex One Multiple Vulnerabilities (000291528)
2022-09-13 00:00:00
jvn
jvn
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.002
Percentile
51.4%
Related for NVD:CVE-2022-40141