5 matches found
Multiple vulnerabilities in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux
Overview Deep Security and Cloud One - Workload Security Agent for Linux provided by Trend Micro Incorporated contain multiple vulnerabilities listed below. Directory Traversal CWE-22 - CVE-2022-23119 Code Injection CWE-94 - CVE-2022-23120 As of 2022 January 24, a Proof-of-Concept PoC code...
CVE-2022-23120
creationtimestamp| type| source ---|---|--- 2022-01-20 22:12:06+00:00| seen| https://t.me/cibsecurity/35952 2022-01-21 11:01:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/5247 2022-02-03 16:00:44+00:00| exploited| https://t.me/truesecator/2588 2023-12-04...
CVE-2022-23120
A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to escalate privileges and run arbitrary code in the context of root. Please note: an attacker must first obtain access to the target agent in...
CVE-2022-23120
A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to escalate privileges and run arbitrary code in the context of root. Please note: an attacker must first obtain access to the target agent in...
CVE-2022-23120
CVE-2022-23120 is a code-injection vulnerability in Trend Micro Deep Security and Cloud One – Workload Security Agent for Linux, affecting version 20 and below. The issue allows local privilege escalation to root by exploiting an input/validation weakness when handling directory traversal sequenc...