CVE-2022-40144
- EPSS 2.18%
- Veröffentlicht 19.09.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 07:20:58
A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product's login authentication by falsifying request parameters on affected installations.
CVE-2022-40139
- EPSS 3.05%
- Veröffentlicht 19.09.2022 18:15:09
- Zuletzt bearbeitet 31.10.2025 18:42:22
Improper validation of some components used by the rollback mechanism in Trend Micro Apex One and Trend Micro Apex One as a Service clients could allow a Apex One server administrator to instruct affected clients to download an unverified rollback pa...
CVE-2022-36336
- EPSS 0.55%
- Veröffentlicht 30.07.2022 00:15:08
- Zuletzt bearbeitet 21.11.2024 07:12:48
A link following vulnerability in the scanning function of Trend Micro Apex One and Worry-Free Business Security agents could allow a local attacker to escalate privileges on affected installations. The resolution for this issue has been deployed aut...
CVE-2022-30700
- EPSS 0.3%
- Veröffentlicht 27.05.2022 00:15:08
- Zuletzt bearbeitet 21.11.2024 07:03:11
An incorrect permission assignment vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to load a DLL with escalated privileges on affected installations. Please note: an attacker must first obtain the ability ...
CVE-2022-30701
- EPSS 0.4%
- Veröffentlicht 27.05.2022 00:15:08
- Zuletzt bearbeitet 21.11.2024 07:03:11
An uncontrolled search path element vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to craft a special configuration file to load an untrusted library with escalated privileges on affected installations. P...
CVE-2022-26871
- EPSS 19.63%
- Veröffentlicht 29.03.2022 21:15:07
- Zuletzt bearbeitet 22.12.2025 13:53:51
An arbitrary file upload vulnerability in Trend Micro Apex Central could allow an unauthenticated remote attacker to upload an arbitrary file which could lead to remote code execution.
CVE-2022-24678
- EPSS 2.3%
- Veröffentlicht 24.02.2022 03:15:43
- Zuletzt bearbeitet 21.11.2024 06:50:51
An security agent resource exhaustion denial-of-service vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service, Trend Micro Worry-Free Business Security 10.0 SP1 and Trend Micro Worry-Free Business Security Services agents could all...
CVE-2022-24679
- EPSS 0.47%
- Veröffentlicht 24.02.2022 03:15:43
- Zuletzt bearbeitet 21.11.2024 06:50:51
A security link following local privilege escalation vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service, Trend Micro Worry-Free Business Security 10.0 SP1 and Trend Micro Worry-Free Business Security Services agents could allow ...
CVE-2022-24680
- EPSS 0.47%
- Veröffentlicht 24.02.2022 03:15:43
- Zuletzt bearbeitet 21.11.2024 06:50:51
A security link following local privilege escalation vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service, Trend Micro Worry-Free Business Security 10.0 SP1 and Trend Micro Worry-Free Business Security Services agents could allow ...
CVE-2021-45442
- EPSS 0.4%
- Veröffentlicht 10.01.2022 14:10:29
- Zuletzt bearbeitet 21.11.2024 06:32:12
A link following denial-of-service vulnerability in Trend Micro Worry-Free Business Security (on prem only) could allow a local attacker to overwrite arbitrary files in the context of SYSTEM. This is similar to, but not the same as CVE-2021-44024. Pl...