An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
This vulnerability is similar to, but not identical to, CVE-2024-36302.
Metrics
Affected Vendors & Products
References
History
Fri, 04 Oct 2024 18:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | NVD-CWE-noinfo | CWE-346 |
Fri, 04 Oct 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Trendmicro
Trendmicro apex One |
|
Weaknesses | NVD-CWE-noinfo | |
CPEs | cpe:2.3:a:trendmicro:apex_one:*:*:*:*:saas:*:*:* | |
Vendors & Products |
Trendmicro
Trendmicro apex One |
MITRE
Status: PUBLISHED
Assigner: trendmicro
Published: 2024-06-10T21:20:53.405Z
Updated: 2024-08-02T03:37:04.389Z
Reserved: 2024-05-23T19:30:36.177Z
Link: CVE-2024-36303
Vulnrichment
Updated: 2024-08-02T03:37:04.389Z
NVD
Status : Modified
Published: 2024-06-10T22:15:10.290
Modified: 2024-11-21T09:22:00.237
Link: CVE-2024-36303
Redhat
No data.