Trend Micro Apex Central XSS in Dashboard Widgets (CVE-2023-32535)
CVE-2023-32535 Published on June 26, 2023
Certain dashboard widgets on Trend Micro Apex Central (on-premise) are vulnerable to cross-site scripting (XSS) attacks that may allow an attacker to achieve remote code execution on affected servers. This is similar to, but not identical to CVE-2023-32531 through 32534.
Products Associated with CVE-2023-32535
Want to know whenever a new CVE is published for TrendMicro Apex Central? stack.watch will email you.
Affected Versions
Trend Micro, Inc. Trend Micro Apex Central:- Version 2019 (8.0) and below 8.0.0.6394 is affected.
Exploit Probability
EPSS
0.79%
Percentile
73.62%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.