Trend Micro Apex Central onprem SQLi enabling RCE for authenticated users
CVE-2023-32530 Published on June 26, 2023

Vulnerable modules of Trend Micro Apex Central (on-premise) contain vulnerabilities which would allow authenticated users to perform a SQL injection that could lead to remote code execution. Please note: an attacker must first obtain authentication on the target system in order to exploit these vulnerabilities. This is similar to, but not identical to CVE-2023-32529.

NVD

Products Associated with CVE-2023-32530

Want to know whenever a new CVE is published for TrendMicro Apex Central? stack.watch will email you.

TrendMicro Apex Central

Affected Versions

Trend Micro, Inc. Trend Micro Apex Central:

Version 2019 (8.0) and below 8.0.0.6394 is affected.

Exploit Probability

EPSS

3.22%

Percentile

86.86%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Trend Micro Apex Central onprem SQLi enabling RCE for authenticated usersCVE-2023-32530 Published on June 26, 2023

Products Associated with CVE-2023-32530

Affected Versions

Exploit Probability

Trend Micro Apex Central onprem SQLi enabling RCE for authenticated users
CVE-2023-32530 Published on June 26, 2023