First published: Mon Jun 26 2023(Updated: )
Certain dashboard widgets on Trend Micro Apex Central (on-premise) are vulnerable to cross-site scripting (XSS) attacks that may allow an attacker to achieve remote code execution on affected servers. This is similar to, but not identical to CVE-2023-32531 through 32534.
Credit: security@trendmicro.com
Affected Software | Affected Version | How to fix |
---|---|---|
Trendmicro Apex Central | =2019 | |
Trend Micro Apex Central |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-32535 is a vulnerability that allows remote attackers to execute arbitrary code on affected installations of Trend Micro Apex Central.
CVE-2023-32535 has a severity rating of medium with a CVSS score of 6.1.
CVE-2023-32535 exploits a flaw in the handling of user-supplied input, allowing an attacker to execute malicious code through a crafted webpage or file.
The affected software for CVE-2023-32535 is Trend Micro Apex Central version 2019.
To fix CVE-2023-32535, update to the latest version of Trend Micro Apex Central or apply the recommended patches and security updates provided by the vendor.