Cybersecurity Alerts

Trend Micro Apex One and Apex One as a Service Improper Validation Vulnerability

Trend Micro Apex One and Apex One as a Service contain an improper validation of rollback mechanism components that could lead to remote code execution.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-353

CWE-641

References

• https://success.trendmicro.com/dcx/s/solution/000291528?language=en_US
• https://nvd.nist.gov/vuln/detail/CVE-2022-40139