An updater link following vulnerability in the Trend Micro Apex One agent could allow a local malicious user to abuse the updater to delete an arbitrary folder, leading for a local privilege escalation on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
trendmicro apex one 2019 |
||
trendmicro apex one |