Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-36304 (GCVE-0-2024-36304)
Vulnerability from cvelistv5 – Published: 2024-06-10 21:21 – Updated: 2024-08-02 03:37
VLAI
EPSS
Summary
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Severity
7.8 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition
Assigner
References
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| Trend Micro, Inc. | Trend Micro Apex One |
Affected:
2019 (14.0) , < 14.0.0.12980
(semver)
|
|
| Trend Micro, Inc. | Trend Micro Apex One as a Service |
Affected:
SaaS , < 14.0.13139
(semver)
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-36304",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-07-02T00:00:00+00:00",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-367",
"description": "CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-07-10T19:34:47.009Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T03:37:04.674Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://success.trendmicro.com/dcx/s/solution/000298063"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-571/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Trend Micro Apex One",
"vendor": "Trend Micro, Inc.",
"versions": [
{
"lessThan": "14.0.0.12980",
"status": "affected",
"version": "2019 (14.0)",
"versionType": "semver"
}
]
},
{
"product": "Trend Micro Apex One as a Service",
"vendor": "Trend Micro, Inc.",
"versions": [
{
"lessThan": "14.0.13139",
"status": "affected",
"version": "SaaS\t",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations.\r\n\r\nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-06-10T21:21:04.492Z",
"orgId": "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
"shortName": "trendmicro"
},
"references": [
{
"url": "https://success.trendmicro.com/dcx/s/solution/000298063"
},
{
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-571/"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
"assignerShortName": "trendmicro",
"cveId": "CVE-2024-36304",
"datePublished": "2024-06-10T21:21:04.492Z",
"dateReserved": "2024-05-23T19:30:36.177Z",
"dateUpdated": "2024-08-02T03:37:04.674Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-36304",
"date": "2026-06-05",
"epss": "0.00048",
"percentile": "0.15475"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-36304\",\"sourceIdentifier\":\"security@trendmicro.com\",\"published\":\"2024-06-10T22:15:10.480\",\"lastModified\":\"2025-06-16T20:39:51.303\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations.\\r\\n\\r\\nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad de tiempo de verificaci\u00f3n de tiempo de uso en Trend Micro Apex One y Apex One como agente de servicio podr\u00eda permitir a un atacante local escalar privilegios en las instalaciones afectadas. Tenga en cuenta: un atacante primero debe obtener la capacidad de ejecutar c\u00f3digo con pocos privilegios en el sistema de destino para poder explotar esta vulnerabilidad.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security@trendmicro.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.0,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.0,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-367\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:trendmicro:apex_one:*:*:*:*:*:saas:*:*\",\"versionEndExcluding\":\"14.0.13139\",\"matchCriteriaId\":\"C4019BEF-E5F0-44B4-90DC-FAD5AF102FE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:trendmicro:apex_one:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"14.0\",\"versionEndExcluding\":\"14.0.0.12980\",\"matchCriteriaId\":\"26566D1C-A42F-4E6E-BA17-E8CD9263A6D6\"}]}]}],\"references\":[{\"url\":\"https://success.trendmicro.com/dcx/s/solution/000298063\",\"source\":\"security@trendmicro.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"https://www.zerodayinitiative.com/advisories/ZDI-24-571/\",\"source\":\"security@trendmicro.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://success.trendmicro.com/dcx/s/solution/000298063\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"https://www.zerodayinitiative.com/advisories/ZDI-24-571/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://success.trendmicro.com/dcx/s/solution/000298063\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.zerodayinitiative.com/advisories/ZDI-24-571/\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T03:37:04.674Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-36304\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-06-11T18:15:11.868513Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-367\", \"description\": \"CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-06-11T18:21:13.172Z\"}}], \"cna\": {\"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Trend Micro, Inc.\", \"product\": \"Trend Micro Apex One\", \"versions\": [{\"status\": \"affected\", \"version\": \"2019 (14.0)\", \"lessThan\": \"14.0.0.12980\", \"versionType\": \"semver\"}]}, {\"vendor\": \"Trend Micro, Inc.\", \"product\": \"Trend Micro Apex One as a Service\", \"versions\": [{\"status\": \"affected\", \"version\": \"SaaS\\t\", \"lessThan\": \"14.0.13139\", \"versionType\": \"semver\"}]}], \"references\": [{\"url\": \"https://success.trendmicro.com/dcx/s/solution/000298063\"}, {\"url\": \"https://www.zerodayinitiative.com/advisories/ZDI-24-571/\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations.\\r\\n\\r\\nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\"}], \"providerMetadata\": {\"orgId\": \"7f7bd7df-cffe-4fdb-ab6d-859363b89272\", \"shortName\": \"trendmicro\", \"dateUpdated\": \"2024-06-10T21:21:04.492Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-36304\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-08-02T03:37:04.674Z\", \"dateReserved\": \"2024-05-23T19:30:36.177Z\", \"assignerOrgId\": \"7f7bd7df-cffe-4fdb-ab6d-859363b89272\", \"datePublished\": \"2024-06-10T21:21:04.492Z\", \"assignerShortName\": \"trendmicro\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2024-AVI-0455
Vulnerability from certfr_avis - Published: 2024-05-31 - Updated: 2024-05-31
De multiples vulnérabilités ont été découvertes dans les produits Trend Micro. Elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et une injection de code indirecte à distance (XSS).
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Trend Micro | Deep Security Agent | Deep Security Agent versions 20.0.x antérieures à 20.0.1-9400 pour Windows | ||
| Trend Micro | IWSVA | IWSVA versions 6.5 antérieures à 6.5 SP3 Patch 2 (b3367) | ||
| Trend Micro | Apex One | Apex One versions 2019 antérieures à SP1 CP b12980 | ||
| Trend Micro | Apex One | Apex One as a Service sans le dernier correctif de sécurité |
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Deep Security Agent versions 20.0.x ant\u00e9rieures \u00e0 20.0.1-9400 pour Windows ",
"product": {
"name": "Deep Security Agent",
"vendor": {
"name": "Trend Micro",
"scada": false
}
}
},
{
"description": "IWSVA versions 6.5 ant\u00e9rieures \u00e0 6.5 SP3 Patch 2 (b3367)",
"product": {
"name": "IWSVA",
"vendor": {
"name": "Trend Micro",
"scada": false
}
}
},
{
"description": "Apex One versions 2019 ant\u00e9rieures \u00e0 SP1 CP b12980",
"product": {
"name": "Apex One",
"vendor": {
"name": "Trend Micro",
"scada": false
}
}
},
{
"description": "Apex One as a Service sans le dernier correctif de s\u00e9curit\u00e9",
"product": {
"name": "Apex One",
"vendor": {
"name": "Trend Micro",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-36304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36304"
},
{
"name": "CVE-2024-36359",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36359"
},
{
"name": "CVE-2024-36307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36307"
},
{
"name": "CVE-2024-36306",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36306"
},
{
"name": "CVE-2024-36302",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36302"
},
{
"name": "CVE-2024-36358",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36358"
},
{
"name": "CVE-2024-36305",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36305"
},
{
"name": "CVE-2024-36303",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36303"
}
],
"initial_release_date": "2024-05-31T00:00:00",
"last_revision_date": "2024-05-31T00:00:00",
"links": [],
"reference": "CERTFR-2024-AVI-0455",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-05-31T00:00:00.000000"
}
],
"risks": [
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Trend Micro. Elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une injection de code indirecte \u00e0 distance (XSS).",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Trend Micro",
"vendor_advisories": [
{
"published_at": "2024-05-30",
"title": "Bulletin de s\u00e9curit\u00e9 Trend Micro 000298151",
"url": "https://success.trendmicro.com/dcx/s/solution/000298151?language=en_US"
},
{
"published_at": "2024-05-30",
"title": "Bulletin de s\u00e9curit\u00e9 Trend Micro 000298065",
"url": "https://success.trendmicro.com/dcx/s/solution/000298065?language=en_US"
},
{
"published_at": "2024-05-30",
"title": "Bulletin de s\u00e9curit\u00e9 Trend Micro 000298063",
"url": "https://success.trendmicro.com/dcx/s/solution/000298063?language=en_US"
}
]
}
Title
Trend Micro Apex One权限提升漏洞(CNVD-2024-40825)
Description
Trend Micro Apex One是美国趋势科技(Trend Micro)公司的一款终端防护软件。
Trend Micro Apex One存在权限提升漏洞,攻击者可利用该漏洞在系统上获取更高的权限。
Severity
中
Patch Name
Trend Micro Apex One权限提升漏洞(CNVD-2024-40825)的补丁
Patch Description
Trend Micro Apex One是美国趋势科技(Trend Micro)公司的一款终端防护软件。
Trend Micro Apex One存在权限提升漏洞,攻击者可利用该漏洞在系统上获取更高的权限。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布了漏洞修复程序,请及时关注更新: https://success.trendmicro.com/dcx/s/solution/000298063
Reference
https://cxsecurity.com/cveshow/CVE-2024-36304/
Impacted products
| Name | Trend Micro Apex One |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2024-36304"
}
},
"description": "Trend Micro Apex One\u662f\u7f8e\u56fd\u8d8b\u52bf\u79d1\u6280\uff08Trend Micro\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u7ec8\u7aef\u9632\u62a4\u8f6f\u4ef6\u3002\n\nTrend Micro Apex One\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u7cfb\u7edf\u4e0a\u83b7\u53d6\u66f4\u9ad8\u7684\u6743\u9650\u3002",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://success.trendmicro.com/dcx/s/solution/000298063",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2024-40825",
"openTime": "2024-10-16",
"patchDescription": "Trend Micro Apex One\u662f\u7f8e\u56fd\u8d8b\u52bf\u79d1\u6280\uff08Trend Micro\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u7ec8\u7aef\u9632\u62a4\u8f6f\u4ef6\u3002\r\n\r\nTrend Micro Apex One\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u7cfb\u7edf\u4e0a\u83b7\u53d6\u66f4\u9ad8\u7684\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Trend Micro Apex One\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff08CNVD-2024-40825\uff09\u7684\u8865\u4e01",
"products": {
"product": "Trend Micro Apex One"
},
"referenceLink": "https://cxsecurity.com/cveshow/CVE-2024-36304/",
"serverity": "\u4e2d",
"submitTime": "2024-06-12",
"title": "Trend Micro Apex One\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff08CNVD-2024-40825\uff09"
}
FKIE_CVE-2024-36304
Vulnerability from fkie_nvd - Published: 2024-06-10 22:15 - Updated: 2025-06-16 20:39
Severity
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.0 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
7.0 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| trendmicro | apex_one | * | |
| trendmicro | apex_one | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:trendmicro:apex_one:*:*:*:*:*:saas:*:*",
"matchCriteriaId": "C4019BEF-E5F0-44B4-90DC-FAD5AF102FE5",
"versionEndExcluding": "14.0.13139",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:trendmicro:apex_one:*:*:*:*:-:*:*:*",
"matchCriteriaId": "26566D1C-A42F-4E6E-BA17-E8CD9263A6D6",
"versionEndExcluding": "14.0.0.12980",
"versionStartIncluding": "14.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations.\r\n\r\nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability."
},
{
"lang": "es",
"value": "Una vulnerabilidad de tiempo de verificaci\u00f3n de tiempo de uso en Trend Micro Apex One y Apex One como agente de servicio podr\u00eda permitir a un atacante local escalar privilegios en las instalaciones afectadas. Tenga en cuenta: un atacante primero debe obtener la capacidad de ejecutar c\u00f3digo con pocos privilegios en el sistema de destino para poder explotar esta vulnerabilidad."
}
],
"id": "CVE-2024-36304",
"lastModified": "2025-06-16T20:39:51.303",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "security@trendmicro.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.0,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2024-06-10T22:15:10.480",
"references": [
{
"source": "security@trendmicro.com",
"tags": [
"Broken Link"
],
"url": "https://success.trendmicro.com/dcx/s/solution/000298063"
},
{
"source": "security@trendmicro.com",
"tags": [
"Third Party Advisory"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-571/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "https://success.trendmicro.com/dcx/s/solution/000298063"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-571/"
}
],
"sourceIdentifier": "security@trendmicro.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-367"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
GHSA-974X-72X9-F6MR
Vulnerability from github – Published: 2024-06-11 00:30 – Updated: 2024-06-11 00:30
VLAI
Details
A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Severity
7.8 (High)
{
"affected": [],
"aliases": [
"CVE-2024-36304"
],
"database_specific": {
"cwe_ids": [
"CWE-367"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-06-10T22:15:10Z",
"severity": "HIGH"
},
"details": "A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to escalate privileges on affected installations.\n\nPlease note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.",
"id": "GHSA-974x-72x9-f6mr",
"modified": "2024-06-11T00:30:39Z",
"published": "2024-06-11T00:30:39Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36304"
},
{
"type": "WEB",
"url": "https://success.trendmicro.com/dcx/s/solution/000298063"
},
{
"type": "WEB",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-571"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
JVNDB-2024-003645
Vulnerability from jvndb - Published: 2024-06-20 14:59 - Updated:2024-06-20 14:59Summary
Multiple vulnerabilities in multiple Trend Micro products
Details
Trend Micro Incorporated has released security updates for multiple Trend Micro products.
Trend Micro Incorporated reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-003645.html",
"dc:date": "2024-06-20T14:59+09:00",
"dcterms:issued": "2024-06-20T14:59+09:00",
"dcterms:modified": "2024-06-20T14:59+09:00",
"description": "Trend Micro Incorporated has released security updates for multiple Trend Micro products.\r\n\r\nTrend Micro Incorporated reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN.",
"link": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-003645.html",
"sec:cpe": [
{
"#text": "cpe:/a:trendmicro:apex_one",
"@product": "Apex One",
"@vendor": "Trend Micro, Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/a:trendmicro:apex_one_as_a_service",
"@product": "Apex One as a Service",
"@vendor": "Trend Micro, Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/a:trendmicro:deep_security_agent",
"@product": "Deep Security Agent",
"@vendor": "Trend Micro, Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/a:trendmicro:interscan_web_security_virtual_appliance",
"@product": "TrendMicro InterScan Web Security Virtual Appliance",
"@vendor": "Trend Micro, Inc.",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2024-003645",
"sec:references": [
{
"#text": "https://jvn.jp/en/vu/JVNVU99027428/index.html",
"@id": "JVNVU#99027428",
"@source": "JVN"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-36302",
"@id": "CVE-2024-36302",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-36303",
"@id": "CVE-2024-36303",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-36304",
"@id": "CVE-2024-36304",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-36305",
"@id": "CVE-2024-36305",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-36306",
"@id": "CVE-2024-36306",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-36307",
"@id": "CVE-2024-36307",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-37289",
"@id": "CVE-2024-37289",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-36358",
"@id": "CVE-2024-36358",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-36359",
"@id": "CVE-2024-36359",
"@source": "CVE"
}
],
"title": "Multiple vulnerabilities in multiple Trend Micro products"
}
NCSC-2024-0245
Vulnerability from csaf_ncscnl - Published: 2024-06-11 11:51 - Updated: 2024-06-11 11:51Summary
Kwetsbaarheden verholpen in Trend Micro Apex One
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten: Trend Micro heeft kwetsbaarheden verholpen in Apex One
Interpretaties: Een lokale kwaadwillende kan de kwetsbaarheden misbruiken om een Denial-of-Service (DoS) te veroorzaken, of om zich verhoogde rechten toe te kennen en mogelijk willekeurige code uit te voeren op het lokale systeem.
Oplossingen: Trend Micro heeft updates uitgebracht om de kwetsbaarheden te verhelpen in Apex One. Zie bijgevoegde referenties voor meer informatie.
Kans: medium
Schade: medium
CWE-274: Improper Handling of Insufficient Privileges
7.8 (High)
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:-:*:*:*:saas:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:-:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:*:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:-:*:*:*:*:saas:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:-:-:*:*:*:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:saas:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:*:*:*:*:saas:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:on-premises:windows:*:*
|
— | |
|
trend_micro_apex_one
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one:2019__14.0_:*:*:*:*:*:*:*
|
— | |
|
trend_micro_apex_one_as_a_service
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one_as_a_service:saas_:*:*:*:*:*:*:*
|
— |
7.8 (High)
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:-:*:*:*:saas:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:-:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:*:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:-:*:*:*:*:saas:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:-:-:*:*:*:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:saas:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:*:*:*:*:saas:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:on-premises:windows:*:*
|
— | |
|
trend_micro_apex_one
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one:2019__14.0_:*:*:*:*:*:*:*
|
— | |
|
trend_micro_apex_one_as_a_service
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one_as_a_service:saas_:*:*:*:*:*:*:*
|
— |
7.8 (High)
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
trend_micro_apex_one
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one:2019__14.0_:*:*:*:*:*:*:*
|
— | |
|
trend_micro_apex_one_as_a_service
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one_as_a_service:saas_:*:*:*:*:*:*:*
|
— |
7.8 (High)
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
trend_micro_apex_one
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one:2019__14.0_:*:*:*:*:*:*:*
|
— | |
|
trend_micro_apex_one_as_a_service
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one_as_a_service:saas_:*:*:*:*:*:*:*
|
— |
6.1 (Medium)
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
trend_micro_apex_one
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one:2019__14.0_:*:*:*:*:*:*:*
|
— | |
|
trend_micro_apex_one_as_a_service
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one_as_a_service:saas_:*:*:*:*:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:-:*:*:*:saas:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:-:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:*:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:-:*:*:*:*:saas:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:-:-:*:*:*:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:saas:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:*:*:*:*:saas:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:on-premises:windows:*:*
|
— |
4.7 (Medium)
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
trend_micro_apex_one
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one:2019__14.0_:*:*:*:*:*:*:*
|
— | |
|
trend_micro_apex_one_as_a_service
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one_as_a_service:saas_:*:*:*:*:*:*:*
|
— |
7.8 (High)
Affected products
Known affected
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:-:*:*:*:saas:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:-:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:*:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:-:*:*:*:*:saas:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:-:-:*:*:*:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:saas:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:*:*:*:*:saas:*:*:*
|
— | |
|
apex_one
trendmicro
|
cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:on-premises:windows:*:*
|
— | |
|
trend_micro_apex_one
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one:2019__14.0_:*:*:*:*:*:*:*
|
— | |
|
trend_micro_apex_one_as_a_service
trend_micro__inc.
|
cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one_as_a_service:saas_:*:*:*:*:*:*:*
|
— |
References
8 references
| URL | Category |
|---|---|
| https://success.trendmicro.com/dcx/s/solution/000298063 | external |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2024… | self |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2024… | self |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2024… | self |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2024… | self |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2024… | self |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2024… | self |
| https://api.ncsc.nl/velma/v1/vulnerabilities/2024… | self |
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Trend Micro heeft kwetsbaarheden verholpen in Apex One",
"title": "Feiten"
},
{
"category": "description",
"text": "Een lokale kwaadwillende kan de kwetsbaarheden misbruiken om een Denial-of-Service (DoS) te veroorzaken, of om zich verhoogde rechten toe te kennen en mogelijk willekeurige code uit te voeren op het lokale systeem.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Trend Micro heeft updates uitgebracht om de kwetsbaarheden te verhelpen in Apex One. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "medium",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Handling of Insufficient Privileges",
"title": "CWE-274"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://success.trendmicro.com/dcx/s/solution/000298063"
}
],
"title": "Kwetsbaarheden verholpen in Trend Micro Apex One",
"tracking": {
"current_release_date": "2024-06-11T11:51:02.976099Z",
"id": "NCSC-2024-0245",
"initial_release_date": "2024-06-11T11:51:02.976099Z",
"revision_history": [
{
"date": "2024-06-11T11:51:02.976099Z",
"number": "0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "trend_micro_apex_one_as_a_service",
"product": {
"name": "trend_micro_apex_one_as_a_service",
"product_id": "CSAFPID-1475518",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one_as_a_service:saas_:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "trend_micro_apex_one",
"product": {
"name": "trend_micro_apex_one",
"product_id": "CSAFPID-1475517",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trend_micro__inc.:trend_micro_apex_one:2019__14.0_:*:*:*:*:*:*:*"
}
}
}
],
"category": "vendor",
"name": "trend_micro__inc."
},
{
"branches": [
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-248486",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:-:-:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-343790",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:-:*:*:*:*:saas:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-114827",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:-:*:*:*:saas:*:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-916567",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:-:*:*:*:saas:windows:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-5671",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:*:*:*:*:saas:*:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-114826",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:14.0.10349:*:*:*:saas:*:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-834584",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:14.0.11789:*:*:*:saas:*:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-834583",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:14.0.11960:*:*:*:saas:*:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-834585",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:14.0.12105:*:*:*:saas:*:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-834586",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:14.0.12518:*:*:*:saas:*:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-90434",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:-:*:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-5672",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-829354",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:on-premises:windows:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-90433",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:saas:*:*:*"
}
}
},
{
"category": "product_name",
"name": "apex_one",
"product": {
"name": "apex_one",
"product_id": "CSAFPID-483585",
"product_identification_helper": {
"cpe": "cpe:2.3:a:trendmicro:apex_one:b1066:*:*:*:*:*:*:*"
}
}
}
],
"category": "vendor",
"name": "trendmicro"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-36302",
"product_status": {
"known_affected": [
"CSAFPID-114827",
"CSAFPID-90434",
"CSAFPID-5672",
"CSAFPID-343790",
"CSAFPID-248486",
"CSAFPID-90433",
"CSAFPID-5671",
"CSAFPID-829354",
"CSAFPID-1475517",
"CSAFPID-1475518"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-36302",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36302.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-114827",
"CSAFPID-90434",
"CSAFPID-5672",
"CSAFPID-343790",
"CSAFPID-248486",
"CSAFPID-90433",
"CSAFPID-5671",
"CSAFPID-829354",
"CSAFPID-1475517",
"CSAFPID-1475518"
]
}
],
"title": "CVE-2024-36302"
},
{
"cve": "CVE-2024-36303",
"product_status": {
"known_affected": [
"CSAFPID-114827",
"CSAFPID-90434",
"CSAFPID-5672",
"CSAFPID-343790",
"CSAFPID-248486",
"CSAFPID-90433",
"CSAFPID-5671",
"CSAFPID-829354",
"CSAFPID-1475517",
"CSAFPID-1475518"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-36303",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36303.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-114827",
"CSAFPID-90434",
"CSAFPID-5672",
"CSAFPID-343790",
"CSAFPID-248486",
"CSAFPID-90433",
"CSAFPID-5671",
"CSAFPID-829354",
"CSAFPID-1475517",
"CSAFPID-1475518"
]
}
],
"title": "CVE-2024-36303"
},
{
"cve": "CVE-2024-36304",
"product_status": {
"known_affected": [
"CSAFPID-1475517",
"CSAFPID-1475518"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-36304",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36304.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1475517",
"CSAFPID-1475518"
]
}
],
"title": "CVE-2024-36304"
},
{
"cve": "CVE-2024-36305",
"product_status": {
"known_affected": [
"CSAFPID-1475517",
"CSAFPID-1475518"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-36305",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36305.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1475517",
"CSAFPID-1475518"
]
}
],
"title": "CVE-2024-36305"
},
{
"cve": "CVE-2024-36306",
"product_status": {
"known_affected": [
"CSAFPID-1475517",
"CSAFPID-1475518",
"CSAFPID-114827",
"CSAFPID-90434",
"CSAFPID-5672",
"CSAFPID-343790",
"CSAFPID-248486",
"CSAFPID-90433",
"CSAFPID-5671",
"CSAFPID-829354"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-36306",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36306.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1475517",
"CSAFPID-1475518",
"CSAFPID-114827",
"CSAFPID-90434",
"CSAFPID-5672",
"CSAFPID-343790",
"CSAFPID-248486",
"CSAFPID-90433",
"CSAFPID-5671",
"CSAFPID-829354"
]
}
],
"title": "CVE-2024-36306"
},
{
"cve": "CVE-2024-36307",
"product_status": {
"known_affected": [
"CSAFPID-1475517",
"CSAFPID-1475518"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-36307",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36307.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1475517",
"CSAFPID-1475518"
]
}
],
"title": "CVE-2024-36307"
},
{
"cve": "CVE-2024-37289",
"product_status": {
"known_affected": [
"CSAFPID-114827",
"CSAFPID-90434",
"CSAFPID-5672",
"CSAFPID-343790",
"CSAFPID-248486",
"CSAFPID-90433",
"CSAFPID-5671",
"CSAFPID-829354",
"CSAFPID-1475517",
"CSAFPID-1475518"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-37289",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37289.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-114827",
"CSAFPID-90434",
"CSAFPID-5672",
"CSAFPID-343790",
"CSAFPID-248486",
"CSAFPID-90433",
"CSAFPID-5671",
"CSAFPID-829354",
"CSAFPID-1475517",
"CSAFPID-1475518"
]
}
],
"title": "CVE-2024-37289"
}
]
}
WID-SEC-W-2024-1256
Vulnerability from csaf_certbund - Published: 2024-05-30 22:00 - Updated: 2024-06-06 22:00Summary
Trend Micro Apex One: Mehrere Schwachstellen
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Trend Micro Apex One ist eine Endpoint-Security Lösung.
Angriff: Ein lokaler Angreifer kann mehrere Schwachstellen in Trend Micro Apex One ausnutzen, um seine Privilegien zu erhöhen, einen Denial-of-Service-Zustand zu verursachen oder vertrauliche Informationen offenzulegen.
Betroffene Betriebssysteme: - Windows
Es bestehen mehrere Schwachstellen in Trend Micro Apex One. Diese Fehler bestehen u.a. aufgrund eines Ursprungsvalidierungsfehlers, eines Time-Of-Check Time-Of-Use- und Link Following-Problems. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern.
Es bestehen mehrere Schwachstellen in Trend Micro Apex One. Diese Fehler bestehen u.a. aufgrund eines Ursprungsvalidierungsfehlers, eines Time-Of-Check Time-Of-Use- und Link Following-Problems. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern.
Es bestehen mehrere Schwachstellen in Trend Micro Apex One. Diese Fehler bestehen u.a. aufgrund eines Ursprungsvalidierungsfehlers, eines Time-Of-Check Time-Of-Use- und Link Following-Problems. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern.
Es bestehen mehrere Schwachstellen in Trend Micro Apex One. Diese Fehler bestehen u.a. aufgrund eines Ursprungsvalidierungsfehlers, eines Time-Of-Check Time-Of-Use- und Link Following-Problems. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern.
Es bestehen mehrere Schwachstellen in Trend Micro Apex One. Diese Fehler bestehen u.a. aufgrund eines Ursprungsvalidierungsfehlers, eines Time-Of-Check Time-Of-Use- und Link Following-Problems. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern.
Es besteht eine Schwachstelle in Trend Micro Apex One. Dieser Fehler besteht in der Schadensbereinigungs-Engine aufgrund eines folgenden Links. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.
Es besteht eine Schwachstelle in Trend Micro Apex One. Dieser Fehler besteht aufgrund eines folgenden Links. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.
References
3 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Trend Micro Apex One ist eine Endpoint-Security L\u00f6sung.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler Angreifer kann mehrere Schwachstellen in Trend Micro Apex One ausnutzen, um seine Privilegien zu erh\u00f6hen, einen Denial-of-Service-Zustand zu verursachen oder vertrauliche Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1256 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1256.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1256 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1256"
},
{
"category": "external",
"summary": "Security Bulletin for Trend Micro Apex One vom 2024-05-30",
"url": "https://success.trendmicro.com/dcx/s/solution/000298063"
}
],
"source_lang": "en-US",
"title": "Trend Micro Apex One: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-06-06T22:00:00.000+00:00",
"generator": {
"date": "2024-08-15T18:09:39.857+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2024-1256",
"initial_release_date": "2024-05-30T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-05-30T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-06-06T22:00:00.000+00:00",
"number": "2",
"summary": "CVE-2024-37289 und ZDI Referenzen aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cSP1 CP b12980",
"product": {
"name": "Trend Micro Apex One \u003cSP1 CP b12980",
"product_id": "T035111"
}
},
{
"category": "product_version_range",
"name": "SaaS \u003c14.0.13139",
"product": {
"name": "Trend Micro Apex One SaaS \u003c14.0.13139",
"product_id": "T035112"
}
}
],
"category": "product_name",
"name": "Apex One"
}
],
"category": "vendor",
"name": "Trend Micro"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-36302",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Trend Micro Apex One. Diese Fehler bestehen u.a. aufgrund eines Ursprungsvalidierungsfehlers, eines Time-Of-Check Time-Of-Use- und Link Following-Problems. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern."
}
],
"release_date": "2024-05-30T22:00:00.000+00:00",
"title": "CVE-2024-36302"
},
{
"cve": "CVE-2024-36303",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Trend Micro Apex One. Diese Fehler bestehen u.a. aufgrund eines Ursprungsvalidierungsfehlers, eines Time-Of-Check Time-Of-Use- und Link Following-Problems. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern."
}
],
"release_date": "2024-05-30T22:00:00.000+00:00",
"title": "CVE-2024-36303"
},
{
"cve": "CVE-2024-36304",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Trend Micro Apex One. Diese Fehler bestehen u.a. aufgrund eines Ursprungsvalidierungsfehlers, eines Time-Of-Check Time-Of-Use- und Link Following-Problems. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern."
}
],
"release_date": "2024-05-30T22:00:00.000+00:00",
"title": "CVE-2024-36304"
},
{
"cve": "CVE-2024-36305",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Trend Micro Apex One. Diese Fehler bestehen u.a. aufgrund eines Ursprungsvalidierungsfehlers, eines Time-Of-Check Time-Of-Use- und Link Following-Problems. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern."
}
],
"release_date": "2024-05-30T22:00:00.000+00:00",
"title": "CVE-2024-36305"
},
{
"cve": "CVE-2024-37289",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Trend Micro Apex One. Diese Fehler bestehen u.a. aufgrund eines Ursprungsvalidierungsfehlers, eines Time-Of-Check Time-Of-Use- und Link Following-Problems. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern."
}
],
"release_date": "2024-05-30T22:00:00.000+00:00",
"title": "CVE-2024-37289"
},
{
"cve": "CVE-2024-36306",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Trend Micro Apex One. Dieser Fehler besteht in der Schadensbereinigungs-Engine aufgrund eines folgenden Links. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen."
}
],
"release_date": "2024-05-30T22:00:00.000+00:00",
"title": "CVE-2024-36306"
},
{
"cve": "CVE-2024-36307",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Trend Micro Apex One. Dieser Fehler besteht aufgrund eines folgenden Links. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen."
}
],
"release_date": "2024-05-30T22:00:00.000+00:00",
"title": "CVE-2024-36307"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…