Trend Micro Apex Central: XSS in Dashboard Widgets Enables RCE
CVE-2023-32534 Published on June 26, 2023

Certain dashboard widgets on Trend Micro Apex Central (on-premise) are vulnerable to cross-site scripting (XSS) attacks that may allow an attacker to achieve remote code execution on affected servers. This is similar to, but not identical to CVE-2023-32531 through 32535.

NVD

Products Associated with CVE-2023-32534

Want to know whenever a new CVE is published for TrendMicro Apex Central? stack.watch will email you.

TrendMicro Apex Central

Affected Versions

Trend Micro, Inc. Trend Micro Apex Central:

Version 2019 (8.0) and below 8.0.0.6394 is affected.

Exploit Probability

EPSS

0.79%

Percentile

73.62%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Trend Micro Apex Central: XSS in Dashboard Widgets Enables RCECVE-2023-32534 Published on June 26, 2023

Products Associated with CVE-2023-32534

Affected Versions

Exploit Probability

Trend Micro Apex Central: XSS in Dashboard Widgets Enables RCE
CVE-2023-32534 Published on June 26, 2023