CVE-2023-47197
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2023-47197 is an origin validation vulnerability in the Trend Micro Apex One security agent that could allow a local attacker to escalate privileges on affected installations. This vulnerability requires the attacker to already have the ability to execute low-privileged code on the target system. The affected products are Trend Micro Apex One security agent versions uYj8x2 and uYj8x3. To remediate this vulnerability, users should update to the latest version of the security agent provided by Trend Micro. The potential danger of this vulnerability lies in the fact that an attacker with low privileges can exploit it to gain elevated privileges, potentially compromising the security and integrity of the affected system.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions