Lucene search
HiveForce LabsHIVEPRO:7AD4F02579311A6A345760455EC86FDDHistorySep 21, 2023 - 6:05 a.m.
Trend Micro Addresses Zero-Day Flaws Exploited in the Wild
2023-09-2106:05:51
HiveForce Labs
www.hivepro.com
14
trend micro
zero-day
flaw
cve-2023-41179
security
vulnerability
unauthorized code execution
system privileges
third-party module
trend micro apex one
worry-free business security services
hiveforce labs
EPSS
0.015
Percentile
86.9%
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A critical zero-day vulnerability, tracked as CVE-2023-41179, has been identified in the third-party AV uninstaller module contained in Trend Micro Apex One, Worry-Free Business Security, and Worry-Free Business Security Services. This vulnerability has the potential to allow an attacker to manipulate the module and execute arbitrary commands on an affected installation. This is a serious security issue that can lead to unauthorized code execution with system privileges on deployed agents. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.
Related
cve
cve
CVE-2023-41179
2023-09-19 14:15:21
prion
prion
Design/Logic Flaw
2023-09-19 14:15:00
nessus
nessus
Trend Micro Worry-Free Business Security (WFBS) Command Execution Vulnerability (000294994)
2024-03-26 00:00:00
Trend Micro Apex One Command Execution (000294994)
2024-03-26 00:00:00
cvelist
cvelist
CVE-2023-41179
2023-09-19 13:44:57
vulnrichment
vulnrichment
CVE-2023-41179
2023-09-19 13:44:57
nvd
nvd
CVE-2023-41179
2023-09-19 14:15:21
cisa_kev
cisa_kev
attackerkb
attackerkb
CVE-2023-41179
2023-09-19 00:00:00
thn
thn