Lucene search
K

209 matches found

BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.9 views

The vulnerability of the Trend Micro Deep Security Agent anti-virus protection system in Windows operating systems arises from the failure to take measures to neutralize certain special elements. This vulnerability allows attackers to enhance their privileges and execute arbitrary code.

The vulnerability of the Trend Micro Deep Security Agent anti-virus protection software for Windows operating systems is related to the lack of measures taken to neutralize its special elements. Exploiting this vulnerability allows a malicious actor to enhance their privileges and execute arbitra...

8CVSS7.5AI score0.04032EPSS
Exploits0References6Affected Software1
NCSC
NCSC
added 2024/11/20 9:4 a.m.7 views

Vulnerability fixed in Trend Micro Deep Security

Trend Micro has fixed a vulnerability in Trend Micro Deep Security. The vulnerability is in the Trend Micro Deep Security 20 Agent and allows malicious actors with legitimate domain access to elevate privileges and potentially execute arbitrary code. Trend Micro has released updates to fix the...

8.8CVSS7.3AI score0.04032EPSS
Exploits0References1
OSV
OSV
added 2024/11/19 7:15 p.m.5 views

CVE-2024-51503

A security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20 Agent could allow an attacker to escalate privileges and execute arbitrary code on an affected machine. In certain circumstances, attackers that have legitimate access to the domain may be able to...

8.8CVSS6.1AI score0.04032EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/11/19 12:0 a.m.7 views

Trend Micro Deep Security Agent Manual Scan Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Deep Security Agent. Authentication is required to exploit this vulnerability. The specific flaw exists within the Trend Micro Deep Security Notifier service. The issue results from the...

7.5CVSS7.3AI score0.04032EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/19 12:0 a.m.5 views

Trend Micro Deep Security 安全漏洞

Trend Micro Deep Security is a server deep security system client from Trend Micro. A security vulnerability exists in versions prior to Trend Micro Deep Security 20.0.1-21510 that stems from the presence of a command injection vulnerability that could allow an attacker to elevate privileges and...

8.8CVSS7.8AI score0.04032EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/11/19 12:0 a.m.8 views

Trend Micro Deep Security Agent Local Privilege Escalation (KA-0016724)

A link following vulnerability in Trend Micro Deep Security 20.x agents below build 20.0.1-3180 could allow a local attacker to escalate privileges on affected installations. Note that Nessus has not tested for this issue but has instead relied solely on the application's self-reported version...

7.8CVSS5.5AI score0.00532EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/11/18 12:0 a.m.8 views

PT-2024-8684 · Trend Micro · Trend Micro Deep Security Agent

Name of the Vulnerable Software and Affected Versions: Trend Micro Deep Security Agent version 20 Description: A security agent manual scan command injection issue in the Trend Micro Deep Security 20 Agent could allow an attacker to escalate privileges and execute arbitrary code on an affected...

8CVSS9.2AI score0.04032EPSS
Exploits0References13
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/11/06 2:0 a.m.11 views

Trend Micro Deep Security 20 Agent for Windows vulnerable to improper access control

Overview Trend Micro Incorporated has released a security update for Deep Security 20 Agent for Windows to fix a improper access control vulnerability CVE-2024-48903. Trend Micro Incorporated reported this vulnerability to JPCERT/CC to notify users of the solution through JVN. Impact A...

7.8CVSS6.6AI score0.00745EPSS
Exploits0References4
NVD
NVD
added 2024/10/22 7:15 p.m.17 views

CVE-2024-48903

An improper access control vulnerability in Trend Micro Deep Security Agent 20 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this...

7.8CVSS0.00745EPSS
Exploits0References2
OSV
OSV
added 2024/10/22 7:15 p.m.6 views

CVE-2024-48903

An improper access control vulnerability in Trend Micro Deep Security Agent 20 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this...

7.8CVSS5.8AI score0.00745EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/10/22 6:28 p.m.14 views

CVE-2024-48903

An improper access control vulnerability in Trend Micro Deep Security Agent 20 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this...

7.8CVSS7.2AI score0.00745EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/22 12:0 a.m.6 views

Trend Micro Deep Security Agent 安全漏洞

Trend Micro Deep Security Agent is a security solution from Trend Micro, Inc. that is primarily used to protect data and applications in servers, virtual machines, and cloud environments. A security vulnerability exists in versions prior to Trend Micro Deep Security Agent 20.0.1-17380, which stem...

7.8CVSS6.4AI score0.00745EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2024/10/17 12:0 a.m.7 views

Trend Micro Deep Security Improper Access Control Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Deep Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.8CVSS7.1AI score0.00745EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/17 12:0 a.m.8 views

PT-2024-33260 · Trend Micro · Trend Micro Deep Security Agent

Name of the Vulnerable Software and Affected Versions: Trend Micro Deep Security Agent version 20 Description: An improper access control vulnerability could allow a local attacker to escalate privileges on affected installations. To exploit this issue, an attacker must first obtain the ability t...

7.8CVSS6.5AI score0.00745EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/09/05 12:0 a.m.18 views

PT-2024-41128 · Trend Micro · Trend Micro Deep Security Agent

Name of the Vulnerable Software and Affected Versions: Trend Micro Deep Security Agent affected versions not specified Description: The issue is related to incorrect link resolution before accessing a file, which can be exploited to potentially allow an attacker to escalate their privileges...

7.8CVSS6.3AI score0.00156EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/09/05 12:0 a.m.15 views

PT-2024-41127 · Trend Micro · Trend Micro Deep Security Agent

Name of the Vulnerable Software and Affected Versions: Trend Micro Deep Security Agent affected versions not specified Description: The issue is related to incorrect link resolution before file access in the Anti-Malware module of Trend Micro Deep Security Agent, which could allow an attacker to...

7.8CVSS6.3AI score0.00156EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2024/07/23 12:0 a.m.8 views

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent operating system for Windows allows a malicious actor to escalate their privileges and execute arbitrary code.

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent antivirus protection software for Windows operating systems is related to an incorrect determination of the link before accessing a file. Exploiting this vulnerability can allow attackers to enhance their privileg...

7.8CVSS7.5AI score0.00532EPSS
Exploits0References4Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/06/20 5:59 a.m.10 views

Multiple vulnerabilities in multiple Trend Micro products

Overview Trend Micro Incorporated has released security updates for multiple Trend Micro products. Trend Micro Incorporated reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN. Impact Apex One 2019 On-prem, Apex One as a Service Local privilege escalation due ...

7.8CVSS6.3AI score0.00889EPSS
Exploits0References13
CNVD
CNVD
added 2024/06/12 12:0 a.m.4 views

Trend Micro Deep Security Elevation of Privilege Vulnerability

Trend Micro Deep Security is the United States Trend Micro Trend Micro, a server depth of security protection system client. An elevation of privilege vulnerability exists in Trend Micro Deep Security, which can be exploited by an attacker to elevate privileges and execute arbitrary code in the...

7.8CVSS7.6AI score0.00532EPSS
Exploits0References1
NVD
NVD
added 2024/06/10 10:15 p.m.38 views

CVE-2024-36358

A link following vulnerability in Trend Micro Deep Security 20.x agents below build 20.0.1-3180 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS0.00532EPSS
Exploits0References2
Rows per page
Query Builder