Deep Security Agent Security Vulnerabilities and Issues — Deep Security Agent CVE List

Lucene search

TrendmicroDeep Security Agent

14 matches found

CVE•added 2024/12/31 5:15 p.m.•66 views

CVE-2024-55955

An incorrect permissions assignment vulnerability in Trend Micro Deep Security 20.0 agents between versions 20.0.1-9400 and 20.0.1-23340 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged co...

7.3CVSS7.2AI score0.00015EPSS

CVE•added 2022/01/20 7:15 p.m.•54 views

CVE-2022-23120

A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to escalate privileges and run arbitrary code in the context of root. Please note: an attacker must first obtain access to the target agent in a...

7.8CVSS7.8AI score0.01197EPSS

CVE•added 2022/09/28 9:15 p.m.•53 views

CVE-2022-40708

An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on ...

3.3CVSS3.7AI score0.00066EPSS

CVE•added 2022/01/20 7:15 p.m.•50 views

CVE-2022-23119

A directory traversal vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to read arbitrary files from the file system. Please note: an attacker must first obtain compromised access to the target Deep Security Man...

7.5CVSS7.4AI score0.0381EPSS

CVE•added 2024/01/23 9:15 p.m.•50 views

CVE-2023-52338

A link following vulnerability in the Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code ...

7.8CVSS7.7AI score0.00114EPSS

CVE•added 2022/09/28 9:15 p.m.•48 views

CVE-2022-40707

3.3CVSS3.7AI score0.00066EPSS

CVE•added 2022/09/28 9:15 p.m.•47 views

CVE-2022-40709

3.3CVSS3.7AI score0.00066EPSS

CVE•added 2024/11/19 7:15 p.m.•44 views

CVE-2024-51503

A security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20 Agent could allow an attacker to escalate privileges and execute arbitrary code on an affected machine. In certain circumstances, attackers that have legitimate access to the domain may be able to remot...

8.8CVSS8.3AI score0.00872EPSS

CVE•added 2024/10/22 7:15 p.m.•43 views

CVE-2024-48903

An improper access control vulnerability in Trend Micro Deep Security Agent 20 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerabi...

7.8CVSS7.2AI score0.00037EPSS

CVE•added 2024/01/23 9:15 p.m.•41 views

CVE-2023-52337

An improper access control vulnerability in Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged...

7.8CVSS7.7AI score0.00091EPSS

CVE•added 2022/09/28 9:15 p.m.•40 views

CVE-2022-40710

A link following vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target syste...

7.8CVSS7.7AI score0.00056EPSS

CVE•added 2025/06/17 9:15 p.m.•12 views

CVE-2025-30640

A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

7.8CVSS7.7AI score0.00029EPSS

CVE•added 2025/06/17 9:15 p.m.•10 views

CVE-2025-30641

A link following vulnerability in the anti-malware solution portion of Trend Micro Deep Security 20.0 agents could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in o...

7.8CVSS7.7AI score0.00033EPSS

CVE•added 2025/06/17 9:15 p.m.•9 views

CVE-2025-30642

A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local attacker to create a denial of service (DoS) situation on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...

5.5CVSS5.6AI score0.00023EPSS