Local Privilege Escalation Vulnerability in Trend Micro Apex One and Worry-Free Business Security Agents

Local Privilege Escalation Vulnerability in Trend Micro Apex One and Worry-Free Business Security Agents

CVE-2022-36336 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A link following vulnerability in the scanning function of Trend Micro Apex One and Worry-Free Business Security agents could allow a local attacker to escalate privileges on affected installations. The resolution for this issue has been deployed automatically via ActiveUpdate to customers in an updated Spyware pattern. Customers who are up-to-date on detection patterns are not required to take any additional steps to mitigate this issue.

Learn more about our Web Application Penetration Testing UK.