Vulnerabilities > Trendmicro > Deep Security Agent

DATE CVE VULNERABILITY TITLE RISK
2024-01-23 CVE-2023-52337 Unspecified vulnerability in Trendmicro Deep Security and Deep Security Agent
An improper access control vulnerability in Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
local
low complexity
trendmicro
7.8
2024-01-23 CVE-2023-52338 Link Following vulnerability in Trendmicro Deep Security and Deep Security Agent
A link following vulnerability in the Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
local
low complexity
trendmicro CWE-59
7.8
2022-09-28 CVE-2022-40707 Out-of-bounds Read vulnerability in Trendmicro Deep Security Agent 20.0
An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations.
local
low complexity
trendmicro CWE-125
3.3
2022-09-28 CVE-2022-40708 Out-of-bounds Read vulnerability in Trendmicro Deep Security Agent 20.0
An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations.
local
low complexity
trendmicro CWE-125
3.3
2022-09-28 CVE-2022-40709 Out-of-bounds Read vulnerability in Trendmicro Deep Security Agent 20.0
An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations.
local
low complexity
trendmicro CWE-125
3.3
2022-09-28 CVE-2022-40710 Link Following vulnerability in Trendmicro Deep Security Agent 20.0
A link following vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to escalate privileges on affected installations.
local
low complexity
trendmicro CWE-59
7.8
2022-01-20 CVE-2022-23119 Path Traversal vulnerability in Trendmicro Deep Security Agent 20.0
A directory traversal vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to read arbitrary files from the file system.
network
low complexity
trendmicro CWE-22
7.5
2022-01-20 CVE-2022-23120 Code Injection vulnerability in Trendmicro Deep Security Agent 20.0
A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to escalate privileges and run arbitrary code in the context of root.
local
low complexity
trendmicro CWE-94
7.8