Main Vulnerability Database SB2022040301

SB2022040301 - Remote code execution in Trend Micro Apex Central

Published: April 3, 2022

Security Bulletin ID SB2022040301

Severity

Critical

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Arbitrary file upload (CVE-ID: CVE-2022-26871)

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to improper access restrictions in the Trend Micro Apex Central management console. A remote non-authenticated attacker can upload arbitrary file to the system and execute it.

Note, the vulnerability is being actively exploited in the wild.

Remediation

Install update from vendor's website.

References

https://success.trendmicro.com/solution/000290678
https://success.trendmicro.com/jp/solution/000290660
https://appweb.trendmicro.com/supportNews/NewsDetail.aspx?id=4435
https://jvn.jp/vu/JVNVU99107357
https://www.jpcert.or.jp/english/at/2022/at220008.html