CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-32557

A path traversal vulnerability in the Trend Micro Apex One and Apex One as a Service could allow an unauthenticated attacker to upload an arbitrary file to the Management Server which could lead to remote code execution with system privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.053

EPSS Ranking 89.5%

CVSS Severity

CVSS v3 Score 9.8

References

https://success.trendmicro.com/dcx/s/solution/000293108?language=en_US
https://success.trendmicro.com/dcx/s/solution/000293108?language=en_US

Products affected by CVE-2023-32557

Trendmicro » Apex One » Version: N/A

cpe:2.3:a:trendmicro:apex_one:-
Trendmicro » Apex One » Version: 14.0.10349

cpe:2.3:a:trendmicro:apex_one:14.0.10349
Trendmicro » Apex One » Version: 14.0.11789

cpe:2.3:a:trendmicro:apex_one:14.0.11789
Trendmicro » Apex One » Version: 14.0.11960

cpe:2.3:a:trendmicro:apex_one:14.0.11960
Trendmicro » Apex One » Version: 2019

cpe:2.3:a:trendmicro:apex_one:2019
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-32557

Products

Pricing

Contact Us