First published: Wed Jan 08 2025(Updated: )
This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-52048.
Affected Software | Affected Version | How to fix |
---|---|---|
Trend Micro Apex One |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of ZDI-CAN-24675 is critical as it allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent.
To fix ZDI-CAN-24675, ensure that you apply the latest security updates provided by Trend Micro for the Apex One Security Agent.
ZDI-CAN-24675 affects local users of Trend Micro Apex One Security Agent installations who can execute low-privileged code.
The potential impacts of ZDI-CAN-24675 include unauthorized privilege escalation, which could lead to further compromise of the affected system.
ZDI-CAN-24675 is a privilege escalation vulnerability that impacts the security of Trend Micro Apex One Security Agent.