First published: Mon Oct 10 2022(Updated: )
A forced browsing vulnerability in Trend Micro Apex One could allow an attacker with access to the Apex One console on affected installations to escalate privileges and modify certain agent groupings. Please note: an attacker must first obtain the ability to log onto the Apex One web console in order to exploit this vulnerability.
Credit: security@trendmicro.com
Affected Software | Affected Version | How to fix |
---|---|---|
Trendmicro Apex One | ||
Trendmicro Apex One | =2019 | |
Microsoft Windows | ||
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-41746 is a vulnerability that allows remote attackers to escalate privileges on affected installations of Trend Micro Apex One.
Yes, authentication is required to exploit this vulnerability.
CVE-2022-41746 has a severity rating of critical.
To fix CVE-2022-41746, apply the necessary security patches or updates provided by Trend Micro.
You can find more information about CVE-2022-41746 on the Trend Micro website and the Zero Day Initiative advisory.