Lucene search

[email protected]NVD:CVE-2023-25143

HistoryMar 10, 2023 - 9:15 p.m.

CVE-2023-25143

2023-03-1021:15:14

CWE-427

[email protected]

web.nvd.nist.gov

vulnerability

trend micro

remote code execution

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.7%

JSON

An uncontrolled search path element vulnerability in the Trend Micro Apex One Server installer could allow an attacker to achieve a remote code execution state on affected products.

Affected configurations

NVD

Node

trendmicroapex_oneRange<14.0.11960saas

trendmicroapex_oneMatch2019-

AND

microsoftwindowsMatch-

References

success.trendmicro.com/solution/000292209

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.7%

JSON

Related for NVD:CVE-2023-25143

cve1 prion1 cvelist1 nessus1