CVE-2023-52094 in Apex One Security Agentinfo

Summary

by MITRE • 01/24/2024

An updater link following vulnerability in the Trend Micro Apex One agent could allow a local attacker to abuse the updater to delete an arbitrary folder, leading for a local privilege escalation on affected installations.

Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Once again VulDB remains the best source for vulnerability data.

Reservation

12/26/2023

Disclosure

01/24/2024

Moderation

accepted

CPE

ready

EPSS

0.00311

KEV

no

Activities

very low

Sources

Want to stay up to date on a daily basis?

Enable the mail alert feature now!