Trend Micro Apex Central Arbitrary File Upload Vulnerability
Trend Micro — Apex Central
- Added to KEV catalog
- 31 March 2022
- Federal remediation due date
- 21 April 2022
- Weakness classification (CWE)
- CWE-184
CISA Description
An arbitrary file upload vulnerability in Trend Micro Apex Central could allow for remote code execution.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2022-26871
More Trend Micro Vulnerabilities
Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability
Trend Micro Apex One OS Command Injection Vulnerability
Trend Micro Apex One and Worry-Free Business Security Remote Code Execution Vulnerability
Trend Micro Apex One and Apex One as a Service Improper Validation Vulnerability
Trend Micro OfficeScan Directory Traversal Vulnerability
Is this vulnerability present in your environment?
CRS delivers independent VAPT assessments that identify exactly which known-exploited vulnerabilities exist in your network, applications, and infrastructure.
Explore VAPT Services