The Trend Micro Apex One server running on the remote host is affected by an authentication bypass vulnerability. An unauthenticated remote attacker can exploit this, via a specially crafted message, to obtain an authenticated session.

According to its self-reported version, the Trend Micro application running on the remote Windows host is Apex One prior to SP1 (Server Build 11092 and Agent Build 11088). It is, therefore, affected by multiple vulnerabilities:

  - Improper validation of some components used by the rollback mechanism in Trend Micro Apex One and Trend Micro Apex     One as a Service clients could allow a Apex One server administrator to instruct affected clients to download an     unverified rollback package, which could lead to remote code execution. (CVE-2022-40139)

  - An origin validation error vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local     attacker to cause a denial-of-service on affected installations. (CVE-2022-40140)

  - A vulnerability in Trend Micro Apex One and Apex One as a Service could allow an attacker to intercept and decode     certain communication strings that may contain some identification attributes of a particular Apex One server.
    (CVE-2022-40141)

  - A security link following local privilege escalation vulnerability in Trend Micro Apex One and Trend Micro Apex One     as a Service agents could allow a local attacker to create a writable folder in an arbitrary location and escalate     privileges on affected installations. (CVE-2022-40142)

  - A link following local privilege escalation vulnerability in Trend Micro Apex One and Trend Micro Apex One as a     Service servers could allow a local attacker to abuse an insecure directory that could allow a low-privileged user     to run arbitrary code with elevated privileges. (CVE-2022-40143)

  - A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the     product's login authentication by falsifying request parameters on affected installations. (CVE-2022-40144)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version   number.

ID	Name	Product	Family	Severity
166380	Trend Micro Apex One Server Authentication Bypass (CVE-2022-40144)	Nessus	Windows	critical
164982	Trend Micro Apex One Multiple Vulnerabilities (000291528)	Nessus	Windows	critical

CVE-2022-40144

critical

Tenable Plugins

critical

critical