jvndb - jvndb-2022-002761

jvndb-2022-002761

Vulnerability from jvndb

Published

2022-11-21 18:25

Modified

2024-05-31 17:43

Severity ?

7.8 (High) - cvssV3_0 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service

Details

Trend Micro Incorporated has released security updates for Apex One and Apex One as a Service. Trend Micro Incorporated reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN.

References

▼	Type	URL
	JVN	https://jvn.jp/en/vu/JVNVU90082799
	JVN	http://jvn.jp/en/vu/JVNVU91848962/index.html
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-44647
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-44648
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-44649
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-44650
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-44651
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-44652
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-44653
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-44654
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-44647
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-44648
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-44649
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-44650
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-44651
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-44652
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-44653
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-44654
	Out-of-bounds Read(CWE-125)	https://cwe.mitre.org/data/definitions/125.html
	Out-of-bounds Write(CWE-787)	https://cwe.mitre.org/data/definitions/787.html
	Time-of-check Time-of-use (TOCTOU) Race Condition(CWE-367)	https://cwe.mitre.org/data/definitions/367.html
	Improper Handling of Exceptional Conditions(CWE-755)	https://cwe.mitre.org/data/definitions/755.html
	Path Traversal(CWE-22)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html
	No Mapping(CWE-Other)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html

Impacted products

▼	Vendor	Product
	Trend Micro, Inc.	Apex One

Show details on JVN DB website

JSON

To clipboard

{
   "@rdf:about": "https://jvndb.jvn.jp/en/contents/2022/JVNDB-2022-002761.html",
   "dc:date": "2024-05-31T17:43+09:00",
   "dcterms:issued": "2022-11-21T18:25+09:00",
   "dcterms:modified": "2024-05-31T17:43+09:00",
   description: "Trend Micro Incorporated has released security updates for Apex One and Apex One as a Service.\r\n\r\nTrend Micro Incorporated reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN.",
   link: "https://jvndb.jvn.jp/en/contents/2022/JVNDB-2022-002761.html",
   "sec:cpe": {
      "#text": "cpe:/a:trendmicro:apex_one",
      "@product": "Apex One",
      "@vendor": "Trend Micro, Inc.",
      "@version": "2.2",
   },
   "sec:cvss": {
      "@score": "7.8",
      "@severity": "High",
      "@type": "Base",
      "@vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "@version": "3.0",
   },
   "sec:identifier": "JVNDB-2022-002761",
   "sec:references": [
      {
         "#text": "https://jvn.jp/en/vu/JVNVU90082799",
         "@id": "JVNVU#90082799",
         "@source": "JVN",
      },
      {
         "#text": "http://jvn.jp/en/vu/JVNVU91848962/index.html",
         "@id": "JVNVU#91848962",
         "@source": "JVN",
      },
      {
         "#text": "https://www.cve.org/CVERecord?id=CVE-2022-44647",
         "@id": "CVE-2022-44647",
         "@source": "CVE",
      },
      {
         "#text": "https://www.cve.org/CVERecord?id=CVE-2022-44648",
         "@id": "CVE-2022-44648",
         "@source": "CVE",
      },
      {
         "#text": "https://www.cve.org/CVERecord?id=CVE-2022-44649",
         "@id": "CVE-2022-44649",
         "@source": "CVE",
      },
      {
         "#text": "https://www.cve.org/CVERecord?id=CVE-2022-44650",
         "@id": "CVE-2022-44650",
         "@source": "CVE",
      },
      {
         "#text": "https://www.cve.org/CVERecord?id=CVE-2022-44651",
         "@id": "CVE-2022-44651",
         "@source": "CVE",
      },
      {
         "#text": "https://www.cve.org/CVERecord?id=CVE-2022-44652",
         "@id": "CVE-2022-44652",
         "@source": "CVE",
      },
      {
         "#text": "https://www.cve.org/CVERecord?id=CVE-2022-44653",
         "@id": "CVE-2022-44653",
         "@source": "CVE",
      },
      {
         "#text": "https://www.cve.org/CVERecord?id=CVE-2022-44654",
         "@id": "CVE-2022-44654",
         "@source": "CVE",
      },
      {
         "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-44647",
         "@id": "CVE-2022-44647",
         "@source": "NVD",
      },
      {
         "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-44648",
         "@id": "CVE-2022-44648",
         "@source": "NVD",
      },
      {
         "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-44649",
         "@id": "CVE-2022-44649",
         "@source": "NVD",
      },
      {
         "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-44650",
         "@id": "CVE-2022-44650",
         "@source": "NVD",
      },
      {
         "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-44651",
         "@id": "CVE-2022-44651",
         "@source": "NVD",
      },
      {
         "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-44652",
         "@id": "CVE-2022-44652",
         "@source": "NVD",
      },
      {
         "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-44653",
         "@id": "CVE-2022-44653",
         "@source": "NVD",
      },
      {
         "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-44654",
         "@id": "CVE-2022-44654",
         "@source": "NVD",
      },
      {
         "#text": "https://cwe.mitre.org/data/definitions/125.html",
         "@id": "CWE-125",
         "@title": "Out-of-bounds Read(CWE-125)",
      },
      {
         "#text": "https://cwe.mitre.org/data/definitions/787.html",
         "@id": "CWE-787",
         "@title": "Out-of-bounds Write(CWE-787)",
      },
      {
         "#text": "https://cwe.mitre.org/data/definitions/367.html",
         "@id": "CWE-367",
         "@title": "Time-of-check Time-of-use (TOCTOU) Race Condition(CWE-367)",
      },
      {
         "#text": "https://cwe.mitre.org/data/definitions/755.html",
         "@id": "CWE-755",
         "@title": "Improper Handling of Exceptional Conditions(CWE-755)",
      },
      {
         "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
         "@id": "CWE-22",
         "@title": "Path Traversal(CWE-22)",
      },
      {
         "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
         "@id": "CWE-Other",
         "@title": "No Mapping(CWE-Other)",
      },
   ],
   title: "Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service",
}

cve-2022-44647

Vulnerability from cvelistv5

Published

2022-11-21 17:55

Modified

2024-08-03 13:54

Severity ?

Summary

An Out-of-bounds read vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This is similar to, but not the same as CVE-2022-44648.

References

▼	URL	Tags
	https://success.trendmicro.com/solution/000291770
	https://www.zerodayinitiative.com/advisories/ZDI-22-1617/

Impacted products

	Vendor	Product	Version
	Trend Micro, Inc.	Trend Micro Apex One	Version: On Premise (14.0) ≤ Version: SaaS (14.0) ≤

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-03T13:54:03.999Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://success.trendmicro.com/solution/000291770",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1617/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Trend Micro Apex One",
               vendor: "Trend Micro, Inc.",
               versions: [
                  {
                     lessThan: "14.0.0.11126",
                     status: "affected",
                     version: "On Premise (14.0)",
                     versionType: "semver",
                  },
                  {
                     lessThan: "14.0.11789",
                     status: "affected",
                     version: "SaaS (14.0)",
                     versionType: "semver",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "An Out-of-bounds read vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to disclose sensitive information on affected installations.\r\n\r\nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\r\n\r\nThis is similar to, but not the same as CVE-2022-44648.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2022-12-12T12:11:04.548862Z",
            orgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
            shortName: "trendmicro",
         },
         references: [
            {
               url: "https://success.trendmicro.com/solution/000291770",
            },
            {
               url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1617/",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
      assignerShortName: "trendmicro",
      cveId: "CVE-2022-44647",
      datePublished: "2022-11-21T17:55:47.486Z",
      dateReserved: "2022-11-03T16:55:18.296Z",
      dateUpdated: "2024-08-03T13:54:03.999Z",
      requesterUserId: "991278ee-fac5-4c3e-9a99-335119fe6921",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2022-44653

Vulnerability from cvelistv5

Published

2022-11-21 17:57

Modified

2024-08-03 13:54

Severity ?

Summary

A security agent directory traversal vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

References

▼	URL	Tags
	https://success.trendmicro.com/solution/000291770
	https://www.zerodayinitiative.com/advisories/ZDI-22-1622/

Impacted products

	Vendor	Product	Version
	Trend Micro, Inc.	Trend Micro Apex One	Version: On Premise (14.0) ≤ Version: SaaS (14.0) ≤

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-03T13:54:03.965Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://success.trendmicro.com/solution/000291770",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1622/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Trend Micro Apex One",
               vendor: "Trend Micro, Inc.",
               versions: [
                  {
                     lessThan: "14.0.0.11126",
                     status: "affected",
                     version: "On Premise (14.0)",
                     versionType: "semver",
                  },
                  {
                     lessThan: "14.0.11789",
                     status: "affected",
                     version: "SaaS (14.0)",
                     versionType: "semver",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "A security agent directory traversal vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to escalate privileges on affected installations.\r\n\r\nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2022-12-12T12:11:04.548862Z",
            orgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
            shortName: "trendmicro",
         },
         references: [
            {
               url: "https://success.trendmicro.com/solution/000291770",
            },
            {
               url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1622/",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
      assignerShortName: "trendmicro",
      cveId: "CVE-2022-44653",
      datePublished: "2022-11-21T17:57:48.668Z",
      dateReserved: "2022-11-03T16:55:18.297Z",
      dateUpdated: "2024-08-03T13:54:03.965Z",
      requesterUserId: "991278ee-fac5-4c3e-9a99-335119fe6921",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2022-44649

Vulnerability from cvelistv5

Published

2022-11-21 17:57

Modified

2024-08-03 13:54

Severity ?

Summary

An out-of-bounds access vulnerability in the Unauthorized Change Prevention service of Trend Micro Apex One and Apex One as a Service could allow a local attacker to elevate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

References

▼	URL	Tags
	https://success.trendmicro.com/solution/000291770
	https://www.zerodayinitiative.com/advisories/ZDI-22-1619/

Impacted products

	Vendor	Product	Version
	Trend Micro, Inc.	Trend Micro Apex One	Version: On Premise (14.0) ≤ Version: SaaS (14.0) ≤

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-03T13:54:04.094Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://success.trendmicro.com/solution/000291770",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1619/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Trend Micro Apex One",
               vendor: "Trend Micro, Inc.",
               versions: [
                  {
                     lessThan: "14.0.0.11126",
                     status: "affected",
                     version: "On Premise (14.0)",
                     versionType: "semver",
                  },
                  {
                     lessThan: "14.0.11789",
                     status: "affected",
                     version: "SaaS (14.0)",
                     versionType: "semver",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "An out-of-bounds access vulnerability in the Unauthorized Change Prevention service of Trend Micro Apex One and Apex One as a Service could allow a local attacker to elevate privileges on affected installations.\r\n\r\nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2022-12-12T12:11:04.548862Z",
            orgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
            shortName: "trendmicro",
         },
         references: [
            {
               url: "https://success.trendmicro.com/solution/000291770",
            },
            {
               url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1619/",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
      assignerShortName: "trendmicro",
      cveId: "CVE-2022-44649",
      datePublished: "2022-11-21T17:57:01.330Z",
      dateReserved: "2022-11-03T16:55:18.297Z",
      dateUpdated: "2024-08-03T13:54:04.094Z",
      requesterUserId: "991278ee-fac5-4c3e-9a99-335119fe6921",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2022-44651

Vulnerability from cvelistv5

Published

2022-11-21 17:57

Modified

2024-08-03 13:54

Severity ?

Summary

A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

References

▼	URL	Tags
	https://success.trendmicro.com/solution/000291770
	https://www.zerodayinitiative.com/advisories/ZDI-22-1620/

Impacted products

	Vendor	Product	Version
	Trend Micro, Inc.	Trend Micro Apex One	Version: On Premise (14.0) ≤ Version: SaaS (14.0) ≤

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-03T13:54:03.985Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://success.trendmicro.com/solution/000291770",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1620/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Trend Micro Apex One",
               vendor: "Trend Micro, Inc.",
               versions: [
                  {
                     lessThan: "14.0.0.11126",
                     status: "affected",
                     version: "On Premise (14.0)",
                     versionType: "semver",
                  },
                  {
                     lessThan: "14.0.11789",
                     status: "affected",
                     version: "SaaS (14.0)",
                     versionType: "semver",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations.\r\n\r\nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2022-12-12T12:11:04.548862Z",
            orgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
            shortName: "trendmicro",
         },
         references: [
            {
               url: "https://success.trendmicro.com/solution/000291770",
            },
            {
               url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1620/",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
      assignerShortName: "trendmicro",
      cveId: "CVE-2022-44651",
      datePublished: "2022-11-21T17:57:30.435Z",
      dateReserved: "2022-11-03T16:55:18.297Z",
      dateUpdated: "2024-08-03T13:54:03.985Z",
      requesterUserId: "991278ee-fac5-4c3e-9a99-335119fe6921",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2022-44654

Vulnerability from cvelistv5

Published

2022-11-21 17:58

Modified

2024-08-03 13:54

Severity ?

Summary

Affected builds of Trend Micro Apex One and Apex One as a Service contain a monitor engine component that is complied without the /SAFESEH memory protection mechanism which helps to monitor for malicious payloads. The affected component's memory protection mechanism has been updated to enhance product security.

References

▼	URL	Tags
	https://success.trendmicro.com/solution/000291770

Impacted products

	Vendor	Product	Version
	Trend Micro, Inc.	Trend Micro Apex One	Version: On Premise (14.0) ≤ Version: SaaS (14.0) ≤

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-03T13:54:03.896Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://success.trendmicro.com/solution/000291770",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Trend Micro Apex One",
               vendor: "Trend Micro, Inc.",
               versions: [
                  {
                     lessThan: "14.0.0.11126",
                     status: "affected",
                     version: "On Premise (14.0)",
                     versionType: "semver",
                  },
                  {
                     lessThan: "14.0.11789",
                     status: "affected",
                     version: "SaaS (14.0)",
                     versionType: "semver",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Affected builds of Trend Micro Apex One and Apex One as a Service contain a monitor engine component that is complied without the /SAFESEH memory protection mechanism which helps to monitor for malicious payloads. The affected component's memory protection mechanism has been updated to enhance product security.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2022-12-12T12:11:04.548862Z",
            orgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
            shortName: "trendmicro",
         },
         references: [
            {
               url: "https://success.trendmicro.com/solution/000291770",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
      assignerShortName: "trendmicro",
      cveId: "CVE-2022-44654",
      datePublished: "2022-11-21T17:58:00.368Z",
      dateReserved: "2022-11-03T16:55:18.298Z",
      dateUpdated: "2024-08-03T13:54:03.896Z",
      requesterUserId: "991278ee-fac5-4c3e-9a99-335119fe6921",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2022-44648

Vulnerability from cvelistv5

Published

2022-11-21 17:56

Modified

2024-08-03 13:54

Severity ?

Summary

References

▼	URL	Tags
	https://success.trendmicro.com/solution/000291770
	https://www.zerodayinitiative.com/advisories/ZDI-22-1618/

Impacted products

	Vendor	Product	Version
	Trend Micro, Inc.	Trend Micro Apex One	Version: On Premise (14.0) ≤ Version: SaaS (14.0) ≤

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-03T13:54:04.036Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://success.trendmicro.com/solution/000291770",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1618/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Trend Micro Apex One",
               vendor: "Trend Micro, Inc.",
               versions: [
                  {
                     lessThan: "14.0.0.11126",
                     status: "affected",
                     version: "On Premise (14.0)",
                     versionType: "semver",
                  },
                  {
                     lessThan: "14.0.11789",
                     status: "affected",
                     version: "SaaS (14.0)",
                     versionType: "semver",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "An Out-of-bounds read vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to disclose sensitive information on affected installations.\r\n\r\nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\r\n\r\nThis is similar to, but not the same as CVE-2022-44647.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2022-12-12T12:11:04.548862Z",
            orgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
            shortName: "trendmicro",
         },
         references: [
            {
               url: "https://success.trendmicro.com/solution/000291770",
            },
            {
               url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1618/",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
      assignerShortName: "trendmicro",
      cveId: "CVE-2022-44648",
      datePublished: "2022-11-21T17:56:45.351Z",
      dateReserved: "2022-11-03T16:55:18.297Z",
      dateUpdated: "2024-08-03T13:54:04.036Z",
      requesterUserId: "991278ee-fac5-4c3e-9a99-335119fe6921",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2022-44652

Vulnerability from cvelistv5

Published

2022-11-21 17:57

Modified

2024-08-03 13:54

Severity ?

Summary

An improper handling of exceptional conditions vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

References

▼	URL	Tags
	https://success.trendmicro.com/solution/000291770
	https://www.zerodayinitiative.com/advisories/ZDI-22-1621/

Impacted products

	Vendor	Product	Version
	Trend Micro, Inc.	Trend Micro Apex One	Version: On Premise (14.0) ≤ Version: SaaS (14.0) ≤

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-03T13:54:04.136Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://success.trendmicro.com/solution/000291770",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1621/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Trend Micro Apex One",
               vendor: "Trend Micro, Inc.",
               versions: [
                  {
                     lessThan: "14.0.0.11126",
                     status: "affected",
                     version: "On Premise (14.0)",
                     versionType: "semver",
                  },
                  {
                     lessThan: "14.0.11789",
                     status: "affected",
                     version: "SaaS (14.0)",
                     versionType: "semver",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "An improper handling of exceptional conditions vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to escalate privileges on affected installations.\r\n\r\nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2022-12-12T12:11:04.548862Z",
            orgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
            shortName: "trendmicro",
         },
         references: [
            {
               url: "https://success.trendmicro.com/solution/000291770",
            },
            {
               url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1621/",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
      assignerShortName: "trendmicro",
      cveId: "CVE-2022-44652",
      datePublished: "2022-11-21T17:57:39.751Z",
      dateReserved: "2022-11-03T16:55:18.297Z",
      dateUpdated: "2024-08-03T13:54:04.136Z",
      requesterUserId: "991278ee-fac5-4c3e-9a99-335119fe6921",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2022-44650

Vulnerability from cvelistv5

Published

2022-11-21 17:57

Modified

2024-08-03 13:54

Severity ?

Summary

A memory corruption vulnerability in the Unauthorized Change Prevention service of Trend Micro Apex One and Apex One as a Service could allow a local attacker to elevate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

References

▼	URL	Tags
	https://success.trendmicro.com/solution/000291770
	https://www.zerodayinitiative.com/advisories/ZDI-22-1616/

Impacted products

	Vendor	Product	Version
	Trend Micro, Inc.	Trend Micro Apex One	Version: On Premise (14.0) ≤ Version: SaaS (14.0) ≤

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-03T13:54:04.008Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://success.trendmicro.com/solution/000291770",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1616/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Trend Micro Apex One",
               vendor: "Trend Micro, Inc.",
               versions: [
                  {
                     lessThan: "14.0.0.11126",
                     status: "affected",
                     version: "On Premise (14.0)",
                     versionType: "semver",
                  },
                  {
                     lessThan: "14.0.11789",
                     status: "affected",
                     version: "SaaS (14.0)",
                     versionType: "semver",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "A memory corruption vulnerability in the Unauthorized Change Prevention service of Trend Micro Apex One and Apex One as a Service could allow a local attacker to elevate privileges on affected installations.\r\n\r\nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2022-12-12T12:11:04.548862Z",
            orgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
            shortName: "trendmicro",
         },
         references: [
            {
               url: "https://success.trendmicro.com/solution/000291770",
            },
            {
               url: "https://www.zerodayinitiative.com/advisories/ZDI-22-1616/",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
      assignerShortName: "trendmicro",
      cveId: "CVE-2022-44650",
      datePublished: "2022-11-21T17:57:14.333Z",
      dateReserved: "2022-11-03T16:55:18.297Z",
      dateUpdated: "2024-08-03T13:54:04.008Z",
      requesterUserId: "991278ee-fac5-4c3e-9a99-335119fe6921",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

Vulnerability from jvndb

Vulnerability from cvelistv5

Vulnerability from cvelistv5

Vulnerability from cvelistv5

Vulnerability from cvelistv5

Vulnerability from cvelistv5

Vulnerability from cvelistv5

Vulnerability from cvelistv5

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature