Vulnerabilities > Trendmicro > Deep Security Agent
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-23 | CVE-2023-52337 | Unspecified vulnerability in Trendmicro Deep Security and Deep Security Agent An improper access control vulnerability in Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. | 7.8 |
| 2024-01-23 | CVE-2023-52338 | Link Following vulnerability in Trendmicro Deep Security and Deep Security Agent A link following vulnerability in the Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. | 7.8 |
| 2022-09-28 | CVE-2022-40707 | Out-of-bounds Read vulnerability in Trendmicro Deep Security Agent 20.0 An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. | 3.3 |
| 2022-09-28 | CVE-2022-40708 | Out-of-bounds Read vulnerability in Trendmicro Deep Security Agent 20.0 An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. | 3.3 |
| 2022-09-28 | CVE-2022-40709 | Out-of-bounds Read vulnerability in Trendmicro Deep Security Agent 20.0 An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. | 3.3 |
| 2022-09-28 | CVE-2022-40710 | Link Following vulnerability in Trendmicro Deep Security Agent 20.0 A link following vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to escalate privileges on affected installations. | 7.8 |
| 2022-01-20 | CVE-2022-23119 | Path Traversal vulnerability in Trendmicro Deep Security Agent 10.0/11.0 A directory traversal vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to read arbitrary files from the file system. | 4.3 |
| 2022-01-20 | CVE-2022-23120 | Code Injection vulnerability in Trendmicro Deep Security Agent 10.0/11.0 A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to escalate privileges and run arbitrary code in the context of root. | 6.9 |