IT security solution Trend Micro Apex One secured against possible attacks
Attackers can attack Windows PCs with Trend Micro Apex One or Apex One as a Service. Security patches have been released.
(Image: Tatiana Popova/Shutterstock.com)
The developers at Trend Micro have closed a total of seven security vulnerabilities in the Apex One protection software for Windows systems. In the worst case scenario, attackers can gain higher rights. However, this is not possible without further ado.
Updates close gaps
According toa warning message, Apex One 2019 (on-prem) and Apex One as a Service (SaaS) under Windows are specifically at risk. The developers state that they have closed the vulnerabilities in the following versions
- Apex One SP1 CP b12980
- Apex One as a Service May 2024 Maintenance Release (202405) Security Agent version: 14.0.13139
In most cases, local attackers can gain higher user rights (CVE-2024-36302 "high", CVE-2024-36304 "high", CVE-2024-36305 "high"). According to Trend Micro, however, they must already have rights to execute low-privileged code.
DoS attacks are also possible and information can be leaked. The remaining vulnerabilities are classified as"medium" threat level.
(des)
