A widget local file inclusion vulnerability in Trend Micro Apex One could allow a remote attacker to execute arbitrary code on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
History

Thu, 02 Jan 2025 20:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-552

Tue, 31 Dec 2024 16:15:00 +0000

Type Values Removed Values Added
Description A widget local file inclusion vulnerability in Trend Micro Apex One could allow a remote attacker to execute arbitrary code on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: trendmicro

Published: 2024-12-31T16:09:28.937Z

Updated: 2025-01-02T19:23:08.104Z

Reserved: 2024-11-05T15:05:29.657Z

Link: CVE-2024-52047

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-12-31T16:15:25.923

Modified: 2025-01-02T20:16:05.163

Link: CVE-2024-52047

cve-icon Redhat

No data.