Saturday, December 9, 2023

Trend Micro Zero-day Vulnerability Let Attackers Run Arbitrary Code

If you use Trend Micro Apex One, you should know that the third-party Antivirus uninstaller feature may have a security hole. This flaw could make it possible for random code to be run.

Even though the National Vulnerability Database (NVD) hasn’t proven how bad the problem is yet, you should be careful and take the right steps to protect your system.

But it was also found that this security hole is being used in the real world (ITW). “Trend Micro has seen at least one ongoing attempt in the wild (ITW) to take advantage of this vulnerability. Customers are strongly urged to update as soon as possible.” Trend Micro’s post is read.

Trend Micro has put out a security warning about how to fix this problem. Worry-Free Business Security (WFBS) and Worry-Free Business Security Services (WFBSS) are also vulnerable because of this flaw.

CVE-2023-41179 – Arbitrary Code Execution Vulnerability

Threat actors can use this hole to send orders to endpoints that are vulnerable. For an attacker to take advantage of this flaw, they must have access to the administrative console on the target machine.

If the exploit works, the attacker may be able to run commands on the PC where the security agent is installed with system rights. Trend Micro has given this vulnerability a score of 9.1 (Critical) for how bad it is.

Affected Products & Fixed in Versions

ProductAffected Version(s)PlatformFixed in Version*Notes
Apex One2019 (On-prem)WindowsSP1 Patch 1 (B12380)Readme
Apex One as a ServiceSaaSWindowsJuly 2023 Monthly Patch (202307)Agent Version: 14.0.12637Readme
Worry-Free Business Security(WFBS)10.0 SP1Windows10.0 SP1 Patch 2495Readme
Worry-Free Business Security Services(WFBSS)SaaSWindowsJuly 31, 2023Monthly Maintenance Release

Users of these products should change to the most recent version of these products so that threat actors don’t take advantage of this vulnerability.

Keep informed about the latest Cyber Security News by following us on Google NewsLinkedinTwitter, and Facebook.

Website

Latest articles

WordPress POP Chain Flaw Exposes Over 800M+ Websites to Attack

A critical remote code execution vulnerability has been patched as part of the Wordpress...

Russian Star Blizzard New Evasion Techniques to Hijack Email Accounts

Hackers target email accounts because they contain valuable personal and financial information. Successful email...

Exploitation Methods Used by PlugX Malware Revealed by Splunk Research

PlugX malware is sophisticated in evasion, as it uses the following techniques to avoid...

TA422 Hackers Attack Organizations Using Outlook & WinRAR Vulnerabilities

Hackers exploit Outlook and WinRAR vulnerabilities because these widely used software programs are lucrative...

Bluetooth keystroke-injection Flaw: A Threat to Apple, Linux & Android Devices

An unauthenticated Bluetooth keystroke-injection vulnerability that affects Android, macOS, and iOS devices has been...

Atlassian Patches RCE Flaw that Affected Multiple Products

Atlassian has been discovered with four new vulnerabilities associated with Remote Code Execution in...

Reflectiz Introduces AI-powered Insights on Top of Its Smart Alerting System

Reflectiz, a cybersecurity company specializing in continuous web threat management, proudly introduces a new...

Endpoint Strategies for 2024 and beyond

Converge and Defend

What's the pulse of Unified Endpoint Management and Security (UEMS) in Europe? Join us live to uncover the strategies that are defining endpoint security in the region.

Related Articles