Summary
Trend micro has released security patches for the vulnerability CVE-2023-41179 (CVSS 9.1 critical). This vulnerability impatcs the Apex one and Worry-Free Business Security (WFBS) products from Trend Micro. A 3rd party AV uninstaller module is the cause of the issue, the uninstaller is bundled with the software. The module allows an attacker to manipulate the module and execute arbitrary commands, however the attacker needs administrative console access on the targeted system. Trend Micro has confirmed that this was abused once in the wild.
Affected products
- Apex One 2019 (On-prem) Windows
- Apex One as a Service SaaS Windows
- Worry-Free Business Security (WFBS) 10.0 SP1 Windows
- Worry-Free Business Security Services (WFBSS) SaaS Windows\
Security updates
- Apex One SP1 Patch 1 (B12380)
- Apex One as a Service July 2023 Monthly Patch (202307) Agent Version: 14.0.12637
- WFBS 10.0 SP1 Patch 2495
- WFBSS July 31, 2023 Monthly Maintenance Release Agent Version: 6.7.3578 / 14.3.1105
More information here