CVE-2022-23119

Name of the Vulnerable Software and Affected Versions Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux versions 20 and below

Description A directory traversal issue could allow an attacker to read arbitrary files from the file system. The attacker must first obtain compromised access to the target Deep Security Manager (DSM) or the target agent must be not yet activated or configured in order to exploit this issue.

Recommendations For versions 20 and below, ensure the Deep Security Manager (DSM) and agents are properly secured and configured to prevent unauthorized access. As a temporary workaround, consider restricting access to sensitive files and directories until a patch is available.