CVE-2023-41179

Known Exploited

Description

A vulnerability in the 3rd party AV uninstaller module contained in Trend Micro Apex One (on-prem and SaaS), Worry-Free Business Security and Worry-Free Business Security Services could allow an attacker to manipulate the module to execute arbitrary commands on an affected installation. Note that an attacker must first obtain administrative console access on the target system in order to exploit this vulnerability.

References

Link	Tags
https://success.trendmicro.com/solution/000294994	broken link
https://success.trendmicro.com/jp/solution/000294706	broken link
https://jvn.jp/en/vu/JVNVU90967486/	third party advisory

Frequently Asked Questions

What is the severity of CVE-2023-41179?: CVE-2023-41179 has been scored as a high severity vulnerability.
How to fix CVE-2023-41179?: To fix CVE-2023-41179, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2023-41179 being actively exploited in the wild?: It is confirmed that CVE-2023-41179 is actively exploited. Be extra cautious if you are using vulnerable components. According to its EPSS score, there is a ~2% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-41179?: CVE-2023-41179 affects Trend Micro, Inc. Trend Micro Apex One, Trend Micro, Inc. Trend Micro Apex One, Trend Micro, Inc. Trend Micro Worry-Free Business Security, Trend Micro, Inc. Trend Micro Worry-Free Business Security Services.

Description

Category

CWE-94 – Improper Control of Generation of Code ('Code Injection')

References

Frequently Asked Questions