Vulnerability Details Key Information Title: Trend Micro Apex One Security Agent Exposed Dangerous Function Local Privilege Escalation Vulnerability ID: - ZDI-23-832 - ZDI-CAN-19188 CVE ID: CVE-2023-34146 CVSS Score: 7.8, AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Vendors: Trend Micro Affected Products: Apex One Vulnerability Details: - The vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. - The flaw exists within the Apex One NT Listener service due to an exposed dangerous function. - An attacker can execute arbitrary code in the context of SYSTEM after gaining the ability to execute low-privileged code. Additional Details: Trend Micro has issued an update to fix the vulnerability. More details: https://success.trendmicro.com/solution/000293322 Disclosure Timeline: - 2022-12-02: Vulnerability reported to vendor - 2023-06-08: Coordinated public release of advisory Credit: Lynn and Lays (@_L4ys)