An exposed dangerous function vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local attacker to escalate privileges and write an arbitrary value to specific Trend Micro agent subkeys on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This is a similar, but not identical vulnerability as CVE-2023-34146 and CVE-2023-34147.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: trendmicro

Published: 2023-06-26T21:58:19.771Z

Updated: 2024-08-02T16:01:54.096Z

Reserved: 2023-05-26T18:41:36.333Z

Link: CVE-2023-34148

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-06-26T22:15:11.270

Modified: 2024-11-21T08:06:39.137

Link: CVE-2023-34148

cve-icon Redhat

No data.