A security agent link following vulnerability in Trend Micro Apex One could allow a local attacker to exploit the vulnerability by changing a specific file into a pseudo-symlink, allowing privilege escalation on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
CPE | Name | Operator | Version |
---|---|---|---|
apex_one | lt | 14.0.11960 | |
apex_one | eq | 2019 |