CVE-2023-52091
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2023-52091 is a newly discovered vulnerability affecting Trend Micro Apex One's anti-spyware engine. This issue enables a local attacker to escalate privileges if they have already gained the ability to execute low-privileged code on the target system. By manipulating the link-following behavior of the anti-spyware engine, an attacker can leverage this vulnerability for privilege escalation. The successful exploitation of this vulnerability could result in significant security implications for affected installations. It is crucial for organizations using Trend Micro Apex One to apply the necessary patches as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Trend Micro Apex One
Affected Vendors
- Trend Micro, Inc.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions