Back to search
CVE-2021-32465
Published: Aug 4, 2021
Modified: Aug 3, 2024
PUBLISHED
Description
An incorrect permission preservation vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a remote user to perform an attack and bypass authentication on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
| Vendor | Product | Versions |
|---|---|---|
Trend Micro | Trend Micro Apex One | affected 2019, SaaS |
Trend Micro | Trend Micro OfficeScan | affected XG SP1 |
References
https://success.trendmicro.com/solution/000287819
x_refsource_MISC
https://success.trendmicro.com/jp/solution/000287796
x_refsource_MISC
https://www.zerodayinitiative.com/advisories/ZDI-21-911/
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now