Multiple vulnerabilities in Trend Micro Apex One, including remote code execution and elevation of privilege flaws, could be exploited by a remote attacker. The article does not provide CVSS scores, specific affected version ranges, or fixed version numbers. Organizations should apply the fixes issued by the vendor, as detailed on the provided Trend Micro support page.
Multiple vulnerabilities were identified in Trend Micro Apex One. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution and elevation of privilege on the targeted system. Impact Elevation of Privilege Remote Code Execution System / Technologies affected Trend Micro Apex One - 2019 (On-prem) Trend Micro Apex One as a Service (SaaS) Trend Vision One Endpoint - Standard Endpoint Protection (SaaS) Solutions Before installation of the software, please visit the vendor web-site for more details. Apply fixes issued by the vendor: https://success.trendmicro.com/en-US/solution/KA-0022458