{"vulnerability": "CVE-2022-40707", "sightings": [{"uuid": "ae26d6c5-f814-418a-a4a1-4e35a2b4c134", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40707", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17079", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-40708\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40707.\n\ud83d\udccf Published: 2022-09-28T21:10:23.000Z\n\ud83d\udccf Modified: 2025-05-20T20:27:37.351Z\n\ud83d\udd17 References:\n1. https://success.trendmicro.com/solution/000291590\n2. https://www.zerodayinitiative.com/advisories/ZDI-22-1298/", "creation_timestamp": "2025-05-20T20:41:12.000000Z"}, {"uuid": "a68a48ff-fab7-4385-bd67-188671670684", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40707", "type": "seen", "source": "https://t.me/cibsecurity/50639", "content": "\u203c CVE-2022-40709 \u203c\n\nAn Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40707 and 40708.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-29T00:34:47.000000Z"}, {"uuid": "97c0b895-0e88-4da3-a8d4-acd714a410b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40707", "type": "seen", "source": "https://t.me/cibsecurity/50630", "content": "\u203c CVE-2022-40707 \u203c\n\nAn Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40708.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-29T00:34:35.000000Z"}, {"uuid": "2df5468d-c414-4a3c-b742-a881aaeb45b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40707", "type": "seen", "source": "https://t.me/cibsecurity/50634", "content": "\u203c CVE-2022-40708 \u203c\n\nAn Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40707.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-29T00:34:38.000000Z"}]}