Trend Micro Apex One Server Authentication Bypass (CVE-2022-40144)
critical Nessus Plugin ID 166380
Language:
Synopsis
An anti-virus application is affected by an authentication bypass vulnerability.Description
The Trend Micro Apex One server running on the remote host is affected by an authentication bypass vulnerability. An unauthenticated remote attacker can exploit this, via a specially crafted message, to obtain an authenticated session.Solution
Upgrade to Apex One SP1 (b11092/11088) or later.See Also
https://success.trendmicro.com/dcx/s/solution/000291528?language=en_US
Plugin Details
Severity: Critical
ID: 166380
File Name: trendmicro_apex_one_cve-2022-40144.nbin
Version: 1.13
Type: remote
Agent: windows
Family: Windows
Published: 10/21/2022
Updated: 3/8/2023
Supported Sensors: Nessus Agent
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.8
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Temporal Vector: E:POC/RL:OF/RC:C
CVSS Score Source: CVE-2022-40144
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: E:P/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:trendmicro:apex_one
Required KB Items: installed_sw/Trend Micro Apex One
Exploit Available: true
Exploit Ease: Exploits are available
Exploited by Nessus: true
Patch Publication Date: 9/13/2022
Vulnerability Publication Date: 9/13/2022
CISA Known Exploited Dates: 10/6/2022
Reference Information
CVE: CVE-2022-40144
CEA-ID: CEA-2022-0030