CVE-2023-30902

EUVD-2023-35242
A privilege escalation vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to unintentionally delete privileged Trend Micro registry keys including its own protected registry keys on affected installations.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 10%
Affected Products (NVD)
VendorProductVersion
trendmicroapex_one
𝑥
< 14.0.12105
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://success.trendmicro.com/dcx/s/solution/000293108?language=en_US
https://success.trendmicro.com/dcx/s/solution/000293108?language=en_US