The vulnerability of the mechanism for detecting malicious scripts in the Browser Exploit Detection (TmsaInstance64.exe) of Trend Micro’s anti-virus software products Apex One and Apex One as a Service allows attackers to enhance their privileges.

The vulnerability of the Browser Exploit Detection mechanism in anti-virus software programs like Trend Micro Apex One and Apex One as a Service is related to incorrect handling of links before accessing files. Exploiting this vulnerability can allow attackers to gain increased privileges...

Trend Micro Apex One Security Agent Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

PT-2023-1524 · Trend Micro · Trend Micro Apex One

Name of the Vulnerable Software and Affected Versions: Trend Micro Apex One affected versions not specified Description: A security agent link following issue could allow a local attacker to exploit the vulnerability by changing a specific file into a pseudo-symlink, allowing privilege escalation...