CVE-2022-40139 – Improper validation of some components used by the rollback mechanism in Trend Micro Apex …

19 September 2022

Vuln ID: CVE-2022-40139

Published: 2022-09-19 18:15:09Z

Description: Improper validation of some components used by the rollback mechanism in Trend Micro Apex One and Trend Micro Apex One as a Service clients could allow a Apex One server administrator to instruct affected clients to download an unverified rollback package, which could lead to remote code execution.

Please note: an attacker must first obtain Apex One server administration console access in order to exploit this vulnerability.

Source: NVD.NIST.GOV

Date:

19 September 2022

Categorie(s):

NVD

Tag(s):

NVD

Overcoming GenAI challenges in healthcare cybersecurity25 April 2024
25 cybersecurity AI stats you should know25 April 2024
73% of SME security pros missed or ignored critical alerts25 April 2024
Battening down the hatches: Navigating third-party cyber threats 25 April 2024
Australia’s spies and cops want ‘accountable encryption’ – aka access to backdoors25 April 2024