First published: Wed Aug 04 2021(Updated: )
An incorrect permission assignment privilege escalation vulnerability in Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security Services could allow an attacker to modify a specific script before it is executed. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Credit: security@trendmicro.com
Affected Software | Affected Version | How to fix |
---|---|---|
Trend Micro Worry-Free Business Security | ||
Trendmicro Apex One | =2019 | |
Trendmicro Officescan | =xg-sp1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-32464 is a vulnerability that allows local attackers to escalate privileges on affected installations of Trend Micro Worry-Free Business Security.
In order to exploit the CVE-2021-32464 vulnerability, an attacker must first obtain the ability to execute low-privileged code on the target system.
CVE-2021-32464 has a severity value of 7.8, indicating a high severity.
CVE-2021-32464 affects installations of Trend Micro Worry-Free Business Security, Apex One (version 2019), and Officescan XG SP1.
To fix the CVE-2021-32464 vulnerability, it is recommended to apply the necessary security patches or updates provided by Trend Micro.