Trend Micro Apex One Path Traversal allows RCE via File Upload
CVE-2023-32557 Published on June 26, 2023

A path traversal vulnerability in the Trend Micro Apex One and Apex One as a Service could allow an unauthenticated attacker to upload an arbitrary file to the Management Server which could lead to remote code execution with system privileges.

NVD

Products Associated with CVE-2023-32557

Want to know whenever a new CVE is published for TrendMicro Apex One? stack.watch will email you.

TrendMicro Apex One

Affected Versions

Trend Micro, Inc. Trend Micro Apex One:

Version 2019 and below 14.0.0.12024 is affected.

trend_micro_inc trend_micro_apex_one:

Version 2019 and below 14.0.0.12024 is affected.

Exploit Probability

EPSS

5.34%

Percentile

89.91%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Trend Micro Apex One Path Traversal allows RCE via File UploadCVE-2023-32557 Published on June 26, 2023

Products Associated with CVE-2023-32557

Affected Versions

Exploit Probability

Trend Micro Apex One Path Traversal allows RCE via File Upload
CVE-2023-32557 Published on June 26, 2023