← volver
CVE-2023-52331

CVE-2023-52331

CVSS 7.1 HIGHEPSS 0.6%CWE-918
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.1EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
23 ene 2024Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central could allow an attacker to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Productos afectados
Trend Micro, Inc. · Trend Micro Apex Central

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://success.trendmicro.com/dcx/s/solution/000296153?language=en_UShttps://www.zerodayinitiative.com/advisories/ZDI-24-052/