First published: Mon Jun 26 2023(Updated: )
Certain dashboard widgets on Trend Micro Apex Central (on-premise) are vulnerable to cross-site scripting (XSS) attacks that may allow an attacker to achieve remote code execution on affected servers. This is similar to, but not identical to CVE-2023-32531 through 32535.
Credit: security@trendmicro.com
Affected Software | Affected Version | How to fix |
---|---|---|
Trendmicro Apex Central | =2019 | |
Trend Micro Apex Central |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2023-32534.
The severity level of CVE-2023-32534 is medium with a CVSS score of 6.1.
An attacker can execute arbitrary code remotely on affected installations of Trend Micro Apex Central.
To exploit CVE-2023-32534, the target must visit a malicious page or open a malicious file.
Yes, user interaction is required to exploit CVE-2023-32534.