CVE-2022-36336 - OpenCVE

A link following vulnerability in the scanning function of Trend Micro Apex One and Worry-Free Business Security agents could allow a local attacker to escalate privileges on affected installations. The resolution for this issue has been deployed automatically via ActiveUpdate to customers in an updated Spyware pattern. Customers who are up-to-date on detection patterns are not required to take any additional steps to mitigate this issue.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Microsoft	Windows
Trendmicro	Apex One Worry-free Business Security Worry-free Business Security Services

Configuration 1 [-]

AND

OR	cpe:2.3:a:trendmicro:apex_one:-::::saas:::
	cpe:2.3:a:trendmicro:apex_one:2019:::::::*
	cpe:2.3:a:trendmicro:worry-free_business_security:10.0:sp1::::::
	cpe:2.3:a:trendmicro:worry-free_business_security_services:-::::saas:::

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://success.trendmicro.com/solution/000291267
https://www.zerodayinitiative.com/advisories/ZDI-22-1033/

History

No history.

MITRE

Status: PUBLISHED

Assigner: trendmicro

Published: 2022-07-29T23:15:34

Updated: 2024-08-03T10:00:04.319Z

Reserved: 2022-07-20T00:00:00

Link: CVE-2022-36336

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2022-07-30T00:15:08.777

Modified: 2022-08-09T17:13:10.803

Link: CVE-2022-36336

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "Trend Micro Apex One", "vendor": "Trend Micro", "versions": [{"status": "affected", "version": "2019 and SaaS"}]}, {"product": "Trend Micro Worry-Free Business Security", "vendor": "Trend Micro", "versions": [{"status": "affected", "version": "10.0 SP1 and SaaS"}]}], "descriptions": [{"lang": "en", "value": "A link following vulnerability in the scanning function of Trend Micro Apex One and Worry-Free Business Security agents could allow a local attacker to escalate privileges on affected installations. The resolution for this issue has been deployed automatically via ActiveUpdate to customers in an updated Spyware pattern. Customers who are up-to-date on detection patterns are not required to take any additional steps to mitigate this issue."}], "problemTypes": [{"descriptions": [{"description": "Link Following LPE", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-07-29T23:15:34", "orgId": "7f7bd7df-cffe-4fdb-ab6d-859363b89272", "shortName": "trendmicro"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://success.trendmicro.com/solution/000291267"}, {"tags": ["x_refsource_MISC"], "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-1033/"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@trendmicro.com", "ID": "CVE-2022-36336", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Trend Micro Apex One", "version": {"version_data": [{"version_value": "2019 and SaaS"}]}}, {"product_name": "Trend Micro Worry-Free Business Security", "version": {"version_data": [{"version_value": "10.0 SP1 and SaaS"}]}}]}, "vendor_name": "Trend Micro"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A link following vulnerability in the scanning function of Trend Micro Apex One and Worry-Free Business Security agents could allow a local attacker to escalate privileges on affected installations. The resolution for this issue has been deployed automatically via ActiveUpdate to customers in an updated Spyware pattern. Customers who are up-to-date on detection patterns are not required to take any additional steps to mitigate this issue."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Link Following LPE"}]}]}, "references": {"reference_data": [{"name": "https://success.trendmicro.com/solution/000291267", "refsource": "MISC", "url": "https://success.trendmicro.com/solution/000291267"}, {"name": "https://www.zerodayinitiative.com/advisories/ZDI-22-1033/", "refsource": "MISC", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-1033/"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T10:00:04.319Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://success.trendmicro.com/solution/000291267"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-1033/"}]}]}, "cveMetadata": {"assignerOrgId": "7f7bd7df-cffe-4fdb-ab6d-859363b89272", "assignerShortName": "trendmicro", "cveId": "CVE-2022-36336", "datePublished": "2022-07-29T23:15:34", "dateReserved": "2022-07-20T00:00:00", "dateUpdated": "2024-08-03T10:00:04.319Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:trendmicro:apex_one:-:*:*:*:saas:*:*:*", "matchCriteriaId": "97D177B6-2542-4D3D-873D-0243DEE3F0A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:*:*:*:*", "matchCriteriaId": "AF019D2D-C426-4D2D-A254-442CE777B41E", "vulnerable": true}, {"criteria": "cpe:2.3:a:trendmicro:worry-free_business_security:10.0:sp1:*:*:*:*:*:*", "matchCriteriaId": "FFCE8717-85D2-4F4F-91DF-C6DA341C4E19", "vulnerable": true}, {"criteria": "cpe:2.3:a:trendmicro:worry-free_business_security_services:-:*:*:*:saas:*:*:*", "matchCriteriaId": "25F873F7-FC62-4234-99EE-E3BDEBB36C2A", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A link following vulnerability in the scanning function of Trend Micro Apex One and Worry-Free Business Security agents could allow a local attacker to escalate privileges on affected installations. The resolution for this issue has been deployed automatically via ActiveUpdate to customers in an updated Spyware pattern. Customers who are up-to-date on detection patterns are not required to take any additional steps to mitigate this issue."}, {"lang": "es", "value": "Una vulnerabilidad de seguimiento de enlaces en la funci\u00f3n scanning de los agentes de Trend Micro Apex One y Worry-Free Business Security podr\u00eda permitir a un atacante local escalar privilegios en las instalaciones afectadas. La resoluci\u00f3n de este problema se ha desplegado autom\u00e1ticamente por medio de ActiveUpdate a clientes con un patr\u00f3n de Spyware actualizado. Los clientes que est\u00e1n al d\u00eda con los patrones de detecci\u00f3n no requieren tomar ninguna medida adicional para mitigar este problema"}], "id": "CVE-2022-36336", "lastModified": "2022-08-09T17:13:10.803", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-07-30T00:15:08.777", "references": [{"source": "security@trendmicro.com", "tags": ["Vendor Advisory"], "url": "https://success.trendmicro.com/solution/000291267"}, {"source": "security@trendmicro.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-1033/"}], "sourceIdentifier": "security@trendmicro.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-59"}], "source": "nvd@nist.gov", "type": "Primary"}]}