Low-Privilege Code Execution Vulnerability in Trend Micro Deep Security 20.x Agents Could Lead to Privilege Escalation
CVE-2024-36358

7.8HIGH

Key Information:

Vendor: Trend Micro
Status: Trend Micro Deep Security Agent
Vendor: CVE Published:; 10 June 2024

Summary

A vulnerability exists in the Trend Micro Deep Security 20.x agents prior to build 20.0.1-3180 that allows local attackers to escalate privileges. This vulnerability stems from a link following weakness, which requires an attacker to first execute low-privileged code on the impacted system. Exploitation of this flaw could enable unauthorized escalation of system privileges, posing significant risks to affected environments.

Affected Version(s)

Trend Micro Deep Security Agent 20 < 20.0.1-3180

References

https://success.trendmicro.com/dcx/s/solution/000298151

https://www.zerodayinitiative.com/advisories/ZDI-24-575/

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 10, 2024