CVE-2021-44022

Published: Dec 3, 2021Modified: Nov 21, 2024

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

A reachable assertion vulnerability in Trend Micro Apex One could allow an attacker to crash the program on affected installations, leading to a denial-of-service (DoS). Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Affected (2)

Products: Trendmicro: Apex One

1 product

Configuration A

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Trendmicro Apex One	Version 2019
Trendmicro Apex One	Version 2019

Running on/with	Platform Versions
Microsoft Windows	All versions

Related CWEs

Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

References (2)

https://success.trendmicro.com/solution/000289229

Source: security@trendmicro.com

Vendor Advisory

https://success.trendmicro.com/solution/000289229

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.