CVE-2024-36473

Name of the Vulnerable Software and Affected Versions Trend Micro VPN Proxy One Pro versions 5.8.1012 and below

Description The issue is related to an arbitrary file overwrite or create attack, which can lead to a local Denial of Service (DoS) and, under specific conditions, elevation of privileges. It is also associated with the possibility of deleting arbitrary files in the system, potentially allowing an attacker to gain elevated privileges.

Recommendations For versions 5.8.1012 and below, update to a version above 5.8.1012 to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific vulnerability.