Privilege Escalation and Code Execution Vulnerability in Trend Micro Apex One

Privilege Escalation and Code Execution Vulnerability in Trend Micro Apex One

CVE-2020-24563 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A vulnerability in Trend Micro Apex One may allow a local attacker to manipulate the process of the security agent unload option (if configured), which then could be manipulated to gain a privilege escalation and code execution. An attacker must first obtain the ability to execute low-privileged code on the target in order to exploit this vulnerability.

Learn more about our Web Application Penetration Testing UK.