Lucene search
Xavier DANESTZDI-21-1219HistoryOct 19, 2021 - 12:00 a.m.
Trend Micro Apex One Uncontrolled Search Path Element Privilege Escalation Vulnerability
2021-10-1900:00:00
Xavier DANEST
www.zerodayinitiative.com
13
trend micro
apex one
privilege escalation
openssl
arbitrary code
system.
EPSS
0
Percentile
15.9%
This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the configuration of OpenSSL. The process loads an OpenSSL configuration file from an unsecured location. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM.
Related
cnvd
cnvd
Trend Micro Apex One code issue vulnerability
2021-10-18 00:00:00
prion
prion
Design/Logic Flaw
2021-10-21 08:15:00
Design/Logic Flaw
2021-10-21 08:15:00
cvelist
cvelist
CVE-2021-42101
2021-10-21 07:46:04
CVE-2021-42103
2021-10-21 07:46:06
nvd
nvd
CVE-2021-42103
2021-10-21 08:15:07
CVE-2021-42101
2021-10-21 08:15:07
cve
cve
CVE-2021-42103
2021-10-21 08:15:07
CVE-2021-42101
2021-10-21 08:15:07