Vulnerability Details CVE-2022-23119
A directory traversal vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to read arbitrary files from the file system. Please note: an attacker must first obtain compromised access to the target Deep Security Manager (DSM) or the target agent must be not yet activated or configured in order to exploit this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.038
EPSS Ranking 87.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 4.3
References
Products affected by CVE-2022-23119
-
cpe:2.3:a:trendmicro:deep_security_agent:10.0
-
cpe:2.3:a:trendmicro:deep_security_agent:11.0
-
cpe:2.3:a:trendmicro:deep_security_agent:12.0
-
cpe:2.3:a:trendmicro:deep_security_agent:20.0
-
cpe:2.3:o:linux:linux_kernel:-