Vulnerabilities > CVE-2023-30902 - Unspecified vulnerability in Trendmicro Apex ONE

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

local

low complexity

trendmicro

NVD

Published: 2023-06-26

Updated: 2023-06-30

Summary

A privilege escalation vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to unintentionally delete privileged Trend Micro registry keys including its own protected registry keys on affected installations.

Vulnerable Configurations

Part	Description	Count
Application	Trendmicro Trendmicro Apex ONE - Trendmicro Apex ONE 14.0.10349 Trendmicro Apex ONE 14.0.11789 Trendmicro Apex ONE 14.0.11960 Trendmicro Apex ONE 2019	6
OS	Microsoft Microsoft Windows -	1

References

https://success.trendmicro.com/dcx/s/solution/000293108?language=en_US