CVE-2022-23120 in Deep Security Agentinformazioni

Riassunto

di MITRE • 20/01/2022

A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to escalate privileges and run arbitrary code in the context of root. Please note: an attacker must first obtain access to the target agent in an un-activated and unconfigured state in order to exploit this vulnerability.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Prenotare

11/01/2022

Divulgazione

20/01/2022

Moderazione

accettato

CPE

pronto

Sfruttamento

Scaricare

EPSS

0.06378

KEV

no

Attività

molto basso

Fonti

Interested in the pricing of exploits?

See the underground prices here!