Untrusted Search Path Privilege Escalation in Trend Micro Apex One
CVE-2023-34145 Published on June 26, 2023

An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local attacker to escalate their privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This is a similar, but not identical vulnerability as CVE-2023-34144.

NVD

Products Associated with CVE-2023-34145

Want to know whenever a new CVE is published for TrendMicro Apex One? stack.watch will email you.

TrendMicro Apex One

Affected Versions

Trend Micro, Inc. Trend Micro Apex One:

Version 2019 and below 14.0.0.12033 is affected.

trend_micro_inc trend_micro_apex_one:

Version 2019 and below 14.0.0.12033 is affected.

Exploit Probability

EPSS

0.04%

Percentile

12.78%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Untrusted Search Path Privilege Escalation in Trend Micro Apex OneCVE-2023-34145 Published on June 26, 2023

Products Associated with CVE-2023-34145

Affected Versions

Exploit Probability

Untrusted Search Path Privilege Escalation in Trend Micro Apex One
CVE-2023-34145 Published on June 26, 2023