Lucene search
K

209 matches found

OSV
OSV
added 2024/06/10 10:15 p.m.3 views

CVE-2024-36358

A link following vulnerability in Trend Micro Deep Security 20.x agents below build 20.0.1-3180 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS6AI score0.00532EPSS
Exploits0References2
CVE
CVE
added 2024/06/10 9:21 p.m.68 views

CVE-2024-36358

CVE-2024-36358 affects Trend Micro Deep Security Deep Security Agent. The vulnerability is a local privilege escalation in the agent, exploitable by a user who can execute low-privileged code, by abusing a link following vulnerability to escalate to SYSTEM. Public writeups confirm the flaw lies i...

7.8CVSS7.1AI score0.00532EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/10 9:21 p.m.21 views

CVE-2024-36358

A link following vulnerability in Trend Micro Deep Security 20.x agents below build 20.0.1-3180 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS7.1AI score0.00532EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/10 9:21 p.m.34 views

CVE-2024-36358

A link following vulnerability in Trend Micro Deep Security 20.x agents below build 20.0.1-3180 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS0.00532EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/10 12:0 a.m.4 views

Trend Micro Deep Security 安全漏洞

Trend Micro Deep Security is the United States Trend Micro Trend Micro, a server depth of security protection system client. An elevation of privilege vulnerability exists in Trend Micro Deep Security, which can be exploited by an attacker to elevate privileges and execute arbitrary code in the...

7.8CVSS7.8AI score0.00532EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2024/06/06 12:0 a.m.18 views

Trend Micro Deep Security Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Deep Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Trend...

7.8CVSS7.5AI score0.00532EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/01/24 12:0 a.m.11 views

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent operating system for Windows allows a malicious actor to escalate their privileges and execute arbitrary code.

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent antivirus protection software for Windows operating systems is related to an incorrect definition of symbolic links before accessing a file. Exploiting this vulnerability can allow attackers to increase their...

7.8CVSS7.5AI score0.0031EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/01/24 12:0 a.m.10 views

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent operating system for Windows allows a malicious actor to escalate their privileges and execute arbitrary code.

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent antivirus protection software for Windows operating systems is related to deficiencies in access control for directories. Exploiting this vulnerability can allow attackers to enhance their privileges and execute...

7.8CVSS7.5AI score0.00242EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/01/23 9:15 p.m.3 views

CVE-2023-52337

An improper access control vulnerability in Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileg...

7.8CVSS6AI score0.00242EPSS
Exploits0References2
NVD
NVD
added 2024/01/23 9:15 p.m.45 views

CVE-2023-52338

A link following vulnerability in the Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged cod...

7.8CVSS7.8AI score0.0031EPSS
Exploits0References2
OSV
OSV
added 2024/01/23 9:15 p.m.4 views

CVE-2023-52338

A link following vulnerability in the Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged cod...

7.8CVSS6AI score0.0031EPSS
Exploits0References2
Prion
Prion
added 2024/01/23 9:15 p.m.20 views

Improper access control

An improper access control vulnerability in Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileg...

4.3CVSS7.4AI score0.00242EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2024/01/23 8:43 p.m.20 views

CVE-2023-52338

A link following vulnerability in the Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged cod...

7.1AI score0.0031EPSS
Exploits0References2
CVE
CVE
added 2024/01/23 8:43 p.m.73 views

CVE-2023-52338

CVE-2023-52338 affects Trend Micro Deep Security v20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent. The vulnerability is a local privilege escalation via a link-following flaw in the Anti-Malware/Deep Security component, requiring the attacker to already run low-privilege cod...

7.8CVSS7.7AI score0.0031EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2024/01/23 8:42 p.m.63 views

CVE-2023-52337

CVE-2023-52337 describes an improper access control vulnerability in Trend Micro Deep Security 20.0 and in Trend Micro Cloud One – Endpoint and Workload Security Agent. The flaw arises from insufficient access controls in the Anti-Malware Solution Platform, enabling a local attacker who can execu...

7.8CVSS7.7AI score0.00242EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2024/01/23 8:42 p.m.3 views

CVE-2023-52337

An improper access control vulnerability in Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileg...

7.7AI score0.00242EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/01/23 12:0 a.m.6 views

Trend Micro Deep Security Security Vulnerabilities

Trend Micro Deep Security is a server deep security system client from Trend Micro. A security vulnerability exists in Trend Micro Deep Security version 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent. It could allow a local attacker to elevate privileges on an affected...

7.8CVSS6.5AI score0.0031EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/01/23 12:0 a.m.7 views

Trend Micro Deep Security Security Vulnerabilities

Trend Micro Deep Security is a server deep security system client from Trend Micro. A security vulnerability exists in Trend Micro Deep Security version 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent that stems from an improper access control vulnerability. It could allow a...

7.8CVSS6.5AI score0.00242EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2024/01/19 12:0 a.m.26 views

Trend Micro Deep Security Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Deep Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Trend...

7.8CVSS7.5AI score0.0031EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/01/19 12:0 a.m.24 views

Trend Micro Deep Security Improper Access Control Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Deep Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.8CVSS7.4AI score0.00242EPSS
Exploits0References1
Rows per page
Query Builder