Lucene search
PRIOn knowledge basePRION:CVE-2023-34147HistoryJun 26, 2023 - 10:15 p.m.
Design/Logic Flaw
2023-06-2622:15:00
PRIOn knowledge base
www.prio-n.com
5
logic flaw
dangerous function
privilege escalation
arbitrary value
local attacker
trend micro
agent subkeys
low-privileged code
cve-2023-34146
cve-2023-34148
0.0004 Low
EPSS
Percentile
15.9%
An exposed dangerous function vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local attacker to escalate privileges and write an arbitrary value to specific Trend Micro agent subkeys on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
This is a similar, but not identical vulnerability as CVE-2023-34146 and CVE-2023-34148.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apex_one | lt | 14.0.12518 | |
| apex_one | eq | 2019 |
Related
cvelist
cvelist
nvd
nvd
prion
prion
Design/Logic Flaw
2023-06-26 22:15:00
Design/Logic Flaw
2023-06-26 22:15:00
cve
cve
nessus
nessus
Trend Micro Apex One Multiple Vulnerabilities (000293322)
2024-02-12 00:00:00
zdi
zdi
cnvd
cnvd
Trend Micro Apex One elevation of privilege vulnerability (CNVD-2023-65417)
2023-06-29 00:00:00
Trend Micro Apex One elevation of privilege vulnerability (CNVD-2023-65420)
2023-06-29 00:00:00
Trend Micro Apex One elevation of privilege vulnerability (CNVD-2023-65421)
2023-06-29 00:00:00