What is the severity of ZDI-23-587?

The severity of ZDI-23-587 is critical with a score of 9.8.

What is the affected software of ZDI-23-587?

The affected software of ZDI-23-587 is Trend Micro Mobile Security for Enterprises.

Where can I find more information about ZDI-23-587?

You can find more information about ZDI-23-587 at the following references: [http://www.zerodayinitiative.com/advisories/ZDI-23-587/](http://www.zerodayinitiative.com/advisories/ZDI-23-587/) and [https://success.trendmicro.com/solution/000293106](https://success.trendmicro.com/solution/000293106).

How can I fix ZDI-23-587?

To fix ZDI-23-587, apply the necessary security patches provided by Trend Micro for the affected installations of Mobile Security for Enterprises.

Vulnerability/
ZDI-23-587

critical

9.8

12/5/2023

2/8/2024

ZDI-23-587: Trend Micro Mobile Security for Enterprises widget WFUser Authentication Bypass Vulnerability

First published: Fri May 12 2023(Updated: )

This vulnerability allows remote attackers to bypass authentication on affected installations of Trend Micro Mobile Security for Enterprises. Authentication is not required to exploit this vulnerability.

Affected Software	Affected Version	How to fix
Trend Micro Mobile Security for Enterprises

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of ZDI-23-587?
The severity of ZDI-23-587 is critical with a score of 9.8.
How can remote attackers exploit ZDI-23-587?
Remote attackers can exploit ZDI-23-587 by bypassing authentication on affected installations of Trend Micro Mobile Security for Enterprises without requiring any credentials.
What is the affected software of ZDI-23-587?
The affected software of ZDI-23-587 is Trend Micro Mobile Security for Enterprises.
Where can I find more information about ZDI-23-587?
You can find more information about ZDI-23-587 at the following references: [http://www.zerodayinitiative.com/advisories/ZDI-23-587/](http://www.zerodayinitiative.com/advisories/ZDI-23-587/) and [https://success.trendmicro.com/solution/000293106](https://success.trendmicro.com/solution/000293106).
How can I fix ZDI-23-587?
To fix ZDI-23-587, apply the necessary security patches provided by Trend Micro for the affected installations of Mobile Security for Enterprises.

collector/zdi-published
alias/ZDI-CAN-19721
agent/type
agent/event
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/title
agent/severity
agent/references
agent/tags
agent/description
collector/zdi-advisory
source/ZDI
alias/ZDI-23-587
alias/CVE-2023-32523
agent/software-canonical-lookup
vendor/trend micro
canonical/trend micro mobile security for enterprises

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.