Back to search
CVE-2022-40708
Published: Sep 28, 2022
Modified: May 20, 2025
PUBLISHED
Description
An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40707.
| Vendor | Product | Versions |
|---|---|---|
Trend Micro | Trend Micro Deep Security | affected 20 |
References
https://success.trendmicro.com/solution/000291590
x_refsource_MISC
https://www.zerodayinitiative.com/advisories/ZDI-22-1298/
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now