Lucene search
Poh Jia Hao of STAR LabsZDI-23-652HistoryMay 17, 2023 - 12:00 a.m.
Trend Micro Apex Central modTMMS SQL Injection Remote Code Execution Vulnerability
2023-05-1700:00:00
Poh Jia Hao of STAR Labs
www.zerodayinitiative.com
7
vulnerability
remote code execution
trend micro apex central
sql injection
authentication
delete certificate vector
modtmms endpoint
user-supplied string
sql queries
iusr user
0.005 Low
EPSS
Percentile
75.6%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Apex Central. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of delete_cert_vec requests to the modTMMS endpoint. When parsing the id parameter, the process does not properly validate a user-supplied string before using it to construct SQL queries. An attacker can leverage this vulnerability to execute code in the context of the IUSR user.
Related
cvelist
cvelist
CVE-2023-32529
2023-06-26 21:54:23
CVE-2023-32530
2023-06-26 21:54:34
prion
prion
Sql injection
2023-06-26 22:15:00
Sql injection
2023-06-26 22:15:00
nvd
nvd
CVE-2023-32529
2023-06-26 22:15:10
CVE-2023-32530
2023-06-26 22:15:10
cve
cve
CVE-2023-32530
2023-06-26 22:15:10
CVE-2023-32529
2023-06-26 22:15:10