CVE-2021-44022

EPSS 0.08%
Veröffentlicht 03.12.2021 11:15:07
Zuletzt bearbeitet 21.11.2024 06:30:14
Quelle security@trendmicro.com
CVE-Watchlists
Login
Unerledigt
Login

A reachable assertion vulnerability in Trend Micro Apex One could allow an attacker to crash the program on affected installations, leading to a denial-of-service (DoS). Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Trendmicro ≫ Apex One Version2019 SwEditionsaas

Microsoft ≫ Windows Version-

Trendmicro ≫ Apex One Version2019 Update-

Microsoft ≫ Windows Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.08%	0.233

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:N/I:N/A:P

CWE-617 Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

https://success.trendmicro.com/solution/000289229

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-44022

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-44022

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-44022

EUVD