First published: Mon Jun 26 2023(Updated: )
A privilege escalation vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to unintentionally delete privileged Trend Micro registry keys including its own protected registry keys on affected installations.
Credit: security@trendmicro.com security@trendmicro.com
Affected Software | Affected Version | How to fix |
---|---|---|
Trendmicro Apex One | <14.0.12105 | |
Trendmicro Apex One | =2019 | |
Microsoft Windows | ||
All of | ||
Any of | ||
Trendmicro Apex One | <14.0.12105 | |
Trendmicro Apex One | =2019 | |
Microsoft Windows |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this privilege escalation vulnerability is CVE-2023-30902.
The title of this vulnerability is 'A privilege escalation vulnerability in the Trend Micro Apex One and Apex One as a Service agent.'
The affected software for this vulnerability is Trend Micro Apex One and Apex One as a Service agent.
The severity of CVE-2023-30902 is medium.
A local attacker can exploit this vulnerability by unintentionally deleting privileged Trend Micro registry keys, including its own protected registry keys on affected installations.
To fix this vulnerability, it is recommended to update to a version of Trend Micro Apex One and Apex One as a Service agent that is not affected by this vulnerability.