CVE-2022-36336

Name of the Vulnerable Software and Affected Versions Trend Micro Apex One (affected versions not specified) Worry-Free Business Security (affected versions not specified)

Description A link following vulnerability in the scanning function of Trend Micro Apex One and Worry-Free Business Security agents could allow a local attacker to escalate privileges on affected installations. The resolution for this issue has been deployed automatically via ActiveUpdate to customers in an updated Spyware pattern. Customers who are up-to-date on detection patterns are not required to take any additional steps to mitigate this issue.

Recommendations For Trend Micro Apex One, ensure that the Spyware pattern is updated to the latest version to resolve the issue. For Worry-Free Business Security, ensure that the Spyware pattern is updated to the latest version to resolve the issue. As a general mitigation measure, keep detection patterns up-to-date to prevent exploitation of this issue.