QwikSec

Security Database

CVE

CWE

Training

CVE-2021-32463

Published: Jul 20, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

An incorrect permission assignment denial-of-service vulnerability in Trend Micro Apex One, Apex One as a Service (SaaS), Worry-Free Business Security 10.0 SP1 and Worry-Free Servgices could allow a local attacker to escalate privileges and delete files with system privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Vendor	Product	Versions
Trend Micro	Trend Micro Apex One	affected `2019, SaaS`
Trend Micro	Trend Micro Worry-Free Business Security	affected `10.0 SP1, Services (SaaS)`

References

https://success.trendmicro.com/solution/000286855

x_refsource_MISC

https://success.trendmicro.com/solution/000286856

x_refsource_MISC

https://www.zerodayinitiative.com/advisories/ZDI-21-786/

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.