Kharosx0

**Name of the Vulnerable Software and Affected Versions** Trend Micro Password Manager (Consumer) version 5.0.0.1266 and below **Description** The issue allows a low privileged local attacker to delete the contents of an arbitrary folder as SYSTEM, which can then be used for privilege escalation on the affected machine. **Recommendations** For Trend Micro Password Manager (Consumer) version 5.0.0.1266 and below, update to a version above 5.0.0.1266 to resolve the issue. As a temporary workaround, consider restricting access to sensitive folders to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Worry-Free Business Security Server (affected versions not specified) **Description** A security out-of-bounds read information disclosure issue could allow a local attacker to send garbage data to a specific named pipe and crash the server. The attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** TeamViewer (affected versions not specified) **Description** This issue allows local attackers to disclose sensitive information on affected installations of TeamViewer. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this issue. The specific flaw exists within the TeamViewer service. The problem results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated array. An attacker can leverage this in conjunction with other issues to execute arbitrary code in the context of SYSTEM. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Bitdefender GravityZone versions 7.1.2.33 and prior versions **Description** The issue is related to an Improper Link Resolution Before File Access ('Link Following') vulnerability in the EPAG component of Bitdefender Endpoint Security Tools for Windows. This allows a local attacker to cause a denial of service. **Recommendations** For Bitdefender GravityZone versions 7.1.2.33 and prior versions, update to a version later than 7.1.2.33 to resolve the issue. As a temporary workaround, consider restricting access to the EPAG component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Apex One versions 10.0 SP1 Trend Micro Apex One as a Service versions 10.0 SP1 Trend Micro Worry-Free Business Security versions 10.0 SP1 **Description** A stack-based buffer overflow issue could allow a local attacker to escalate privileges on affected installations. The attacker must first obtain the ability to execute low-privileged code on the target system to exploit this issue. **Recommendations** For Trend Micro Apex One version 10.0 SP1, update to a version that includes a fix for this issue. For Trend Micro Apex One as a Service version 10.0 SP1, update to a version that includes a fix for this issue. For Trend Micro Worry-Free Business Security version 10.0 SP1, update to a version that includes a fix for this issue.

Name of the Vulnerable Software and Affected Versions: McAfee Agent for Windows versions prior to 5.7.4 Description: The issue is related to improper access control in the repair process, allowing a local attacker to perform a DLL preloading attack using unsigned DLLs. This results in elevation of privileges and the ability to execute arbitrary code as the system user. The vulnerability occurs because a temporary directory used in the repair process is not correctly protected and the DLL signature is not checked. Recommendations: For versions prior to 5.7.4, update to version 5.7.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the temporary directory used in the repair process to minimize the risk of exploitation. Additionally, ensure that all DLLs used by the McAfee Agent for Windows are properly signed and validated to prevent unsigned DLLs from being loaded.

Name of the Vulnerable Software and Affected Versions: Trend Micro Apex One (affected versions not specified) Trend Micro Apex One as a Service (affected versions not specified) Trend Micro Worry-Free Business Security Services (affected versions not specified) Description: An incorrect permission assignment privilege escalation issue could allow an attacker to modify a specific script before it is executed. The attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this issue. Recommendations: At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Apex One (affected versions not specified) Trend Micro Apex One as a Service (affected versions not specified) OfficeScan XG SP1 (affected versions not specified) **Description** The issue is related to improper access control in a sensitive file, which could allow a local attacker to escalate privileges on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this issue. **Recommendations** For Trend Micro Apex One, consider restricting access to sensitive files until a patch is available. For Trend Micro Apex One as a Service, consider implementing additional security controls to prevent low-privileged code execution. For OfficeScan XG SP1, consider disabling any features that may allow privilege escalation until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Foxit Reader version 10.0.0.35798 **Description** This issue allows local attackers to escalate privileges on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this issue. The specific flaw exists within the handling of the configuration files used by the Foxit Reader Update Service. The issue results from incorrect permissions set on a resource used by the service. An attacker can leverage this issue to escalate privileges and execute code in the context of SYSTEM. **Recommendations** For Foxit Reader version 10.0.0.35798, consider disabling the Foxit Reader Update Service until a patch is available to prevent exploitation. Restrict access to the configuration files used by the service to minimize the risk of privilege escalation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Apex One (affected versions not specified) **Description** A local attacker may manipulate the security agent unload option to gain privilege escalation and code execution. The attacker must first obtain the ability to execute low-privileged code on the target. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Apex One (affected versions not specified) Worry-Free Business Security 10.0 SP1 (affected versions not specified) Worry-Free Business Security Services on macOS (affected versions not specified) **Description** A vulnerability may allow an attacker to manipulate a certain binary to load and run a script from a user-writable folder, which then would allow them to execute arbitrary code as root. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Apex One (affected versions not specified) Worry-Free Business Security 10.0 SP1 Worry-Free Business Security Services (affected versions not specified) **Description** A vulnerability may allow an attacker to manipulate a dll, causing an out-of-bounds read that crashes multiple processes in the product. The attacker must first obtain the ability to execute low-privileged code on the target system to exploit this issue. **Recommendations** For Trend Micro Apex One, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Worry-Free Business Security 10.0 SP1, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Worry-Free Business Security Services, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Apex One versions prior to 1909 (OS Build 18363.719) Trend Micro Worry-Free Business Security 10.0 SP1 Trend Micro OfficeScan (affected versions not specified) **Description** A vulnerability in Trend Micro products may allow an attacker to manipulate a particular product folder, temporarily disabling security and potentially leading to privilege escalation through the abuse of a specific Windows function. The attacker must first obtain the ability to execute low-privileged code on the target system. The issue is related to insufficient access control to the "Misc" folder. **Recommendations** For Trend Micro Apex One versions prior to 1909 (OS Build 18363.719), update to version 1909 (OS Build 18363.719) or later to resolve the issue. For Trend Micro Worry-Free Business Security 10.0 SP1, consider restricting access to the "Misc" folder as a temporary workaround until a patch is available. For Trend Micro OfficeScan, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Apex One (affected versions not specified) Trend Micro OfficeScan XG SP1 (affected versions not specified) Trend Micro Worry-Free Business Security 10 SP1 (affected versions not specified) Trend Micro Worry-Free Business Security Services (affected versions not specified) Microsoft Windows (versions prior to 1909, OS Build 18363.719) **Description** A vulnerability in the mentioned Trend Micro products on Microsoft Windows may allow an attacker to create a hard link to any file on the system, potentially leading to privilege escalation and code execution. The attacker must first obtain the ability to execute low-privileged code on the target system. The issue is related to insufficient access control in the Security Agent component of the affected Trend Micro products. **Recommendations** For Trend Micro Apex One, consider restricting access to sensitive files and directories until a patch is available. For Trend Micro OfficeScan XG SP1, temporarily disable any features that may allow the creation of hard links to system files. For Trend Micro Worry-Free Business Security 10 SP1, avoid using the Security Agent component until the issue is resolved. For Trend Micro Worry-Free Business Security Services, restrict access to the vulnerable component to minimize the risk of exploitation. For Microsoft Windows versions prior to 1909 (OS Build 18363.719), update to version 1909 or later to mitigate the risk of hard link exploitation.