Published:2021/10/25  Last Updated:2021/10/25

JVNVU#92842857
Trend Micro Endpoint security products for enterprises vulnerable to privilege escalation

Overview

Trend Micro Incorporated has released security updates for Endpoint security products for enterprises.

Products Affected

  • Apex One On Premise (2019)
  • Apex One as a Service
  • Worry-Free Business Security 10 SP1
  • Worry-Free Business Security Services

Description

Trend Micro Incorporated has released security updates for Endpoint security products for enterprises.

Impact

An attacker may obtain administrative privileges and an arbitrary file may be created. As a result, the product may fall into a denial-of-service (DoS) condition.

Solution

Apply the Patch
Apply the appropriate patch according to the information provided by the developer.

References

JPCERT/CC Addendum

Vulnerability Analysis by JPCERT/CC

Credit

Trend Micro Incorporated reported this vulnerability to JPCERT/CC to notify users of the solution through JVN.

Other Information

JPCERT Alert
JPCERT Reports
CERT Advisory
CPNI Advisory
TRnotes
CVE
JVN iPedia