Lucene search
K

11 matches found

Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.6 views

PT-2026-22851

Name of the Vulnerable Software and Affected Versions Trend Micro Apex One mac agent affected versions not specified Description An origin validation error in the iCore service allows a local attacker to escalate privileges. Exploitation requires the attacker to first have the ability to execute...

7.8CVSS7.3AI score0.00357EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2025/08/06 8:57 a.m.13 views

Trend Micro Confirms Active Exploitation of Critical Apex One Flaws in On-Premise Systems

Trend Micro has released mitigations to address critical security flaws in on-premise versions of Apex One Management Console that it said have been exploited in the wild. The vulnerabilities CVE-2025-54948 and CVE-2025-54987, both rated 9.4 on the CVSS scoring system, have been described as...

9.4CVSS8.1AI score0.2079EPSS
Exploits0
OSV
OSV
added 2025/03/25 6:15 p.m.4 views

CVE-2024-58104

A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could allow a local attacker to bypass existing security and execute arbitrary code on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the...

7.8CVSS6.2AI score0.00155EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/07/04 12:0 a.m.5 views

The vulnerability of the ApexOne Security Agent for antivirus software from Trend Micro’s Apex One and Apex One as a Service allows attackers to execute arbitrary code and gain elevated privileges.

The vulnerability of the ApexOne Security Agent in antivirus software products Trend Micro Apex One and Apex One as a Service is related to deficiencies in access control for the Suspect folder. Exploiting this vulnerability can allow attackers to execute arbitrary code and increase their...

7.8CVSS7.6AI score0.00629EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/06/10 9:20 p.m.27 views

CVE-2024-36303

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this...

7.8CVSS7.1AI score0.00354EPSS
Exploits0References2
NVD
NVD
added 2024/01/23 9:15 p.m.37 views

CVE-2023-47200

A plug-in manager origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...

7.8CVSS7.7AI score0.00122EPSS
Exploits0References2
CVE
CVE
added 2024/01/23 8:36 p.m.46 views

CVE-2023-47193

Trend Micro Apex One contains an origin validation vulnerability (CVE-2023-47193) in the Apex One security agent that could let a local attacker escalate privileges. The Nessus entry notes affected versions are Apex One prior to SP1 (Server Build 12526 and Agent Build 12526). It requires the atta...

7.8CVSS7.6AI score0.00141EPSS
Exploits0References2Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2024/01/10 12:0 a.m.17 views

Trend Micro Apex One Anti-Spyware Engine Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

7.8CVSS7.5AI score0.00311EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/06/06 12:0 a.m.3 views

PT-2023-3203 · Trend Micro · Trend Micro Apex One Security Agent +1

Name of the Vulnerable Software and Affected Versions: Trend Micro Apex One Security Agent affected versions not specified Trend Micro Apex One as a Service affected versions not specified Description: The issue is related to the use of dangerous methods or functions in the Trend Micro Apex One a...

7.8CVSS7.3AI score0.00234EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2023/06/06 12:0 a.m.1 views

PT-2023-3202 · Trend Micro · Trend Micro Apex One Security Agent +1

Name of the Vulnerable Software and Affected Versions: Trend Micro Apex One Security Agent affected versions not specified Trend Micro Apex One as a Service affected versions not specified Description: The issue is related to an untrusted search path vulnerability in the security agent of Trend...

7.8CVSS7.5AI score0.00306EPSS
Exploits0References9
Zero Day Initiative
Zero Day Initiative
added 2022/02/16 12:0 a.m.54 views

Trend Micro Apex One Security Agent Resource Exhaustion Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Trend Micro Apex One Security Agent. Authentication is not required to exploit this vulnerability. The specific flaw exists within the logging of requests received on the management por...

5.3CVSS3.2AI score0.02299EPSS
Exploits0References1
Rows per page
Query Builder