CVE-2022-41746

A forced browsing vulnerability in Trend Micro Apex One could allow an attacker with access to the Apex One console on affected installations to escalate privileges and modify certain agent groupings. Please note: an attacker must first obtain the ability to log onto the Apex One web console in...

Trend Micro Apex One 安全漏洞

Trend Micro Apex One is an endpoint protection software from Trend Micro. A security vulnerability exists in Trend Micro Apex One 2019 on-prem, SaaS version, which stems from forced browsing in Apex One, and can be exploited by an attacker to access the Apex One console to elevate privileges and...

CVE-2022-41746

A forced browsing vulnerability in Trend Micro Apex One could allow an attacker with access to the Apex One console on affected installations to escalate privileges and modify certain agent groupings. Please note: an attacker must first obtain the ability to log onto the Apex One web console in...

CVE-2022-41746

CVE-2022-41746 describes a forced browsing/privilege-escalation vulnerability in Trend Micro Apex One. An attacker with console access could navigate to targeted URLs and, bypassing normal authorization, escalate privileges and modify agent groupings. The issue requires the attacker to log into t...