cvelistv5 - cve-2022-40144

CVE-2022-40144 (GCVE-0-2022-40144)

Vulnerability from cvelistv5 – Published: 2022-09-19 00:00 – Updated: 2024-08-03 12:14

Summary

A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product's login authentication by falsifying request parameters on affected installations.

Severity ?

No CVSS data available.

CWE

Assigner

trendmicro

References

URL

Tags

	https://success.trendmicro.com/solution/000291528
	https://jvn.jp/en/jp/JVN36454862/index.html
	https://appweb.trendmicro.com/SupportNews/NewsDet…
	https://www.ipa.go.jp/security/ciadr/vul/20220913…

Impacted products

	Vendor	Product	Version
	Trend Micro	Trend Micro Apex One	Affected: 2019 (on-prem) and SaaS

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T12:14:39.823Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://success.trendmicro.com/solution/000291528"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://jvn.jp/en/jp/JVN36454862/index.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Trend Micro Apex One",
          "vendor": "Trend Micro",
          "versions": [
            {
              "status": "affected",
              "version": "2019 (on-prem) and SaaS"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product\u0027s login authentication by falsifying request parameters on affected installations."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Login Authentication Bypass",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-11-04T00:00:00",
        "orgId": "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
        "shortName": "trendmicro"
      },
      "references": [
        {
          "url": "https://success.trendmicro.com/solution/000291528"
        },
        {
          "url": "https://jvn.jp/en/jp/JVN36454862/index.html"
        },
        {
          "url": "https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553"
        },
        {
          "url": "https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
    "assignerShortName": "trendmicro",
    "cveId": "CVE-2022-40144",
    "datePublished": "2022-09-19T00:00:00",
    "dateReserved": "2022-09-06T00:00:00",
    "dateUpdated": "2024-08-03T12:14:39.823Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:trendmicro:apex_one:-:*:*:*:*:saas:*:*\", \"matchCriteriaId\": \"576055B3-C274-430E-98DA-BCC578F8C295\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AF019D2D-C426-4D2D-A254-442CE777B41E\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A2572D17-1DE6-457B-99CC-64AFD54487EA\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product\u0027s login authentication by falsifying request parameters on affected installations.\"}, {\"lang\": \"es\", \"value\": \"Una vulnerabilidad en Trend Micro Apex One y Trend Micro Apex One as a Service podr\\u00eda permitir a un atacante omitir la autenticaci\\u00f3n de inicio de sesi\\u00f3n del producto al falsificar los par\\u00e1metros de petici\\u00f3n en las instalaciones afectadas\"}]",
      "id": "CVE-2022-40144",
      "lastModified": "2024-11-21T07:20:58.330",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}]}",
      "published": "2022-09-19T18:15:10.163",
      "references": "[{\"url\": \"https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553\", \"source\": \"security@trendmicro.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://jvn.jp/en/jp/JVN36454862/index.html\", \"source\": \"security@trendmicro.com\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://success.trendmicro.com/solution/000291528\", \"source\": \"security@trendmicro.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html\", \"source\": \"security@trendmicro.com\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://jvn.jp/en/jp/JVN36454862/index.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://success.trendmicro.com/solution/000291528\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}]",
      "sourceIdentifier": "security@trendmicro.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-287\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-40144\",\"sourceIdentifier\":\"security@trendmicro.com\",\"published\":\"2022-09-19T18:15:10.163\",\"lastModified\":\"2024-11-21T07:20:58.330\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product\u0027s login authentication by falsifying request parameters on affected installations.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad en Trend Micro Apex One y Trend Micro Apex One as a Service podr\u00eda permitir a un atacante omitir la autenticaci\u00f3n de inicio de sesi\u00f3n del producto al falsificar los par\u00e1metros de petici\u00f3n en las instalaciones afectadas\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-287\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:trendmicro:apex_one:-:*:*:*:*:saas:*:*\",\"matchCriteriaId\":\"576055B3-C274-430E-98DA-BCC578F8C295\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF019D2D-C426-4D2D-A254-442CE777B41E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2572D17-1DE6-457B-99CC-64AFD54487EA\"}]}]}],\"references\":[{\"url\":\"https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553\",\"source\":\"security@trendmicro.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://jvn.jp/en/jp/JVN36454862/index.html\",\"source\":\"security@trendmicro.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://success.trendmicro.com/solution/000291528\",\"source\":\"security@trendmicro.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html\",\"source\":\"security@trendmicro.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://jvn.jp/en/jp/JVN36454862/index.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://success.trendmicro.com/solution/000291528\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]}]}}"
  }
}

GHSA-MR2G-23MQ-VJ3H

Vulnerability from github – Published: 2022-09-20 00:00 – Updated: 2022-09-22 00:00

Details

A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product’s login authentication by falsifying request parameters on affected installations.

Severity ?

9.8 (Critical)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-40144"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-287"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2022-09-19T18:15:00Z",
    "severity": "CRITICAL"
  },
  "details": "A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product\u2019s login authentication by falsifying request parameters on affected installations.",
  "id": "GHSA-mr2g-23mq-vj3h",
  "modified": "2022-09-22T00:00:31Z",
  "published": "2022-09-20T00:00:28Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-40144"
    },
    {
      "type": "WEB",
      "url": "https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553"
    },
    {
      "type": "WEB",
      "url": "https://jvn.jp/en/jp/JVN36454862/index.html"
    },
    {
      "type": "WEB",
      "url": "https://success.trendmicro.com/solution/000291528"
    },
    {
      "type": "WEB",
      "url": "https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

CERTFR-2022-AVI-817

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans Trend Micro Apex One. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Contournement provisoire

None

Impacted products

	Vendor	Product	Description
	Trend Micro	Apex One	Apex One Apex One versions antérieures à SP1 (b11092/11088)
	Trend Micro	Apex One	Apex One SaaS sans la mise à jour mensuelle d'août 2022

References

Title

Publication Time

Tags

Bulletin de sécurité Trend Micro 000291528 du 13 septembre 2022

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Apex One Apex One versions ant\u00e9rieures \u00e0 SP1 (b11092/11088)",
      "product": {
        "name": "Apex One",
        "vendor": {
          "name": "Trend Micro",
          "scada": false
        }
      }
    },
    {
      "description": "Apex One SaaS sans la mise \u00e0 jour mensuelle d\u0027ao\u00fbt 2022",
      "product": {
        "name": "Apex One",
        "vendor": {
          "name": "Trend Micro",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n\n## Contournement provisoire\n",
  "cves": [
    {
      "name": "CVE-2022-40139",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40139"
    },
    {
      "name": "CVE-2022-40142",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40142"
    },
    {
      "name": "CVE-2022-40141",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40141"
    },
    {
      "name": "CVE-2022-40140",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40140"
    },
    {
      "name": "CVE-2022-40144",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40144"
    },
    {
      "name": "CVE-2022-40143",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40143"
    }
  ],
  "links": [],
  "reference": "CERTFR-2022-AVI-817",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2022-09-14T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Trend Micro Apex\nOne. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service et un\ncontournement de la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Trend Micro Apex One",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Trend Micro 000291528 du 13 septembre 2022",
      "url": "https://success.trendmicro.com/dcx/s/solution/000291528"
    }
  ]
}

CERTFR-2022-AVI-817

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Contournement provisoire

None

Impacted products

	Vendor	Product	Description
	Trend Micro	Apex One	Apex One Apex One versions antérieures à SP1 (b11092/11088)
	Trend Micro	Apex One	Apex One SaaS sans la mise à jour mensuelle d'août 2022

References

Title

Publication Time

Tags

Bulletin de sécurité Trend Micro 000291528 du 13 septembre 2022

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Apex One Apex One versions ant\u00e9rieures \u00e0 SP1 (b11092/11088)",
      "product": {
        "name": "Apex One",
        "vendor": {
          "name": "Trend Micro",
          "scada": false
        }
      }
    },
    {
      "description": "Apex One SaaS sans la mise \u00e0 jour mensuelle d\u0027ao\u00fbt 2022",
      "product": {
        "name": "Apex One",
        "vendor": {
          "name": "Trend Micro",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n\n## Contournement provisoire\n",
  "cves": [
    {
      "name": "CVE-2022-40139",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40139"
    },
    {
      "name": "CVE-2022-40142",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40142"
    },
    {
      "name": "CVE-2022-40141",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40141"
    },
    {
      "name": "CVE-2022-40140",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40140"
    },
    {
      "name": "CVE-2022-40144",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40144"
    },
    {
      "name": "CVE-2022-40143",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40143"
    }
  ],
  "links": [],
  "reference": "CERTFR-2022-AVI-817",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2022-09-14T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Trend Micro Apex\nOne. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service et un\ncontournement de la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Trend Micro Apex One",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Trend Micro 000291528 du 13 septembre 2022",
      "url": "https://success.trendmicro.com/dcx/s/solution/000291528"
    }
  ]
}

FKIE_CVE-2022-40144

Vulnerability from fkie_nvd - Published: 2022-09-19 18:15 - Updated: 2024-11-21 07:20

Severity ?

9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
security@trendmicro.com	https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553	Patch, Vendor Advisory
security@trendmicro.com	https://jvn.jp/en/jp/JVN36454862/index.html	Patch, Third Party Advisory
security@trendmicro.com	https://success.trendmicro.com/solution/000291528	Patch, Vendor Advisory
security@trendmicro.com	https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://jvn.jp/en/jp/JVN36454862/index.html	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://success.trendmicro.com/solution/000291528	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html	Patch, Third Party Advisory

Impacted products

Vendor	Product	Version
trendmicro	apex_one	-
trendmicro	apex_one	2019
microsoft	windows	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:trendmicro:apex_one:-:*:*:*:*:saas:*:*",
              "matchCriteriaId": "576055B3-C274-430E-98DA-BCC578F8C295",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF019D2D-C426-4D2D-A254-442CE777B41E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product\u0027s login authentication by falsifying request parameters on affected installations."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en Trend Micro Apex One y Trend Micro Apex One as a Service podr\u00eda permitir a un atacante omitir la autenticaci\u00f3n de inicio de sesi\u00f3n del producto al falsificar los par\u00e1metros de petici\u00f3n en las instalaciones afectadas"
    }
  ],
  "id": "CVE-2022-40144",
  "lastModified": "2024-11-21T07:20:58.330",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2022-09-19T18:15:10.163",
  "references": [
    {
      "source": "security@trendmicro.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553"
    },
    {
      "source": "security@trendmicro.com",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://jvn.jp/en/jp/JVN36454862/index.html"
    },
    {
      "source": "security@trendmicro.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://success.trendmicro.com/solution/000291528"
    },
    {
      "source": "security@trendmicro.com",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://jvn.jp/en/jp/JVN36454862/index.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://success.trendmicro.com/solution/000291528"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html"
    }
  ],
  "sourceIdentifier": "security@trendmicro.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-287"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2022-40144

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2022-40144

Aliases

CVE-2022-40144

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2022-40144",
    "id": "GSD-2022-40144"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2022-40144"
      ],
      "details": "A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product\u0027s login authentication by falsifying request parameters on affected installations.",
      "id": "GSD-2022-40144",
      "modified": "2023-12-13T01:19:30.339548Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@trendmicro.com",
        "ID": "CVE-2022-40144",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Trend Micro Apex One",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "2019 (on-prem) and SaaS"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Trend Micro"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product\u0027s login authentication by falsifying request parameters on affected installations."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Login Authentication Bypass"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "url": "https://success.trendmicro.com/solution/000291528"
          },
          {
            "url": "https://jvn.jp/en/jp/JVN36454862/index.html"
          },
          {
            "url": "https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553"
          },
          {
            "url": "https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:trendmicro:apex_one:2019:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:trendmicro:apex_one:-:*:*:*:*:saas:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@trendmicro.com",
          "ID": "CVE-2022-40144"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A vulnerability in Trend Micro Apex One and Trend Micro Apex One as a Service could allow an attacker to bypass the product\u2019s login authentication by falsifying request parameters on affected installations."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-287"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "N/A",
              "refsource": "N/A",
              "tags": [
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html"
            },
            {
              "name": "N/A",
              "refsource": "N/A",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "https://success.trendmicro.com/solution/000291528"
            },
            {
              "name": "N/A",
              "refsource": "N/A",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "https://appweb.trendmicro.com/SupportNews/NewsDetail.aspx?id=4553"
            },
            {
              "name": "N/A",
              "refsource": "N/A",
              "tags": [
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://jvn.jp/en/jp/JVN36454862/index.html"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2022-09-21T13:30Z",
      "publishedDate": "2022-09-19T18:15Z"
    }
  }
}

JVNDB-2022-000071

Vulnerability from jvndb - Published: 2022-09-14 18:15 - Updated:2024-06-13 11:34

Severity ?

7.8 (High) - cvssV3_0 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

Multiple vulnerabilities in Trend Micro Apex One and Trend Micro Apex One as a Service

Details

Trend Micro Apex One and Trend Micro Apex One as a Service provided by Trend Micro Incorporated contain multiple vulnerabilities listed below. * Improper validation in some components of the rollback mechanism (CWE-20) - CVE-2022-40139 * Improper access control (CWE-284) - CVE-2022-40140 * Information exposure (CWE-200) - CVE-2022-40141 * Improper link resolution before file access (CWE-59) - CVE-2022-40142 * Improper link resolution before file access (CWE-59) - CVE-2022-40143 * Improper authentication (CWE-287) - CVE-2022-40144 Trend Micro Incorporated states that attacks exploiting CVE-2022-40139 have been observed. CVE-2022-40139, CVE-2022-40140, CVE-2022-40141, CVE-2022-40142, CVE-2022-40143 Trend Micro Incorporated reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN. CVE-2022-40144 Akinori Takeuchi of Cyber Defense Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.

References

Type

URL

	JVN	https://jvn.jp/en/jp/JVN36454862/index.html
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-40139
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-40140
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-40141
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-40142
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-40143
	CVE	https://www.cve.org/CVERecord?id=CVE-2022-40144
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-40139
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-40140
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-40141
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-40142
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-40143
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-40144
	IPA SECURITY ALERTS	https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html
	JPCERT	https://www.jpcert.or.jp/english/at/2022/at220023.html
	CISA Known Exploited Vulnerabilities Catalog	https://www.cisa.gov/known-exploited-vulnerabilities-catalog
	Improper Input Validation(CWE-20)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html
	Information Exposure(CWE-200)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html
	Permissions(CWE-264)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html
	Improper Authentication(CWE-287)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html
	Link Following(CWE-59)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html

Impacted products

Vendor

Product

Trend Micro, Inc.

Apex One

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2022/JVNDB-2022-000071.html",
  "dc:date": "2024-06-13T11:34+09:00",
  "dcterms:issued": "2022-09-14T18:15+09:00",
  "dcterms:modified": "2024-06-13T11:34+09:00",
  "description": "Trend Micro Apex One and Trend Micro Apex One as a Service provided by Trend Micro Incorporated contain multiple vulnerabilities listed below.\r\n\r\n  * Improper validation in some components of the rollback mechanism (CWE-20) - CVE-2022-40139\r\n  * Improper access control (CWE-284) - CVE-2022-40140\r\n  * Information exposure (CWE-200) - CVE-2022-40141\r\n  * Improper link resolution before file access (CWE-59) - CVE-2022-40142\r\n  * Improper link resolution before file access (CWE-59) - CVE-2022-40143\r\n  * Improper authentication (CWE-287) - CVE-2022-40144\r\n\r\nTrend Micro Incorporated states that attacks exploiting CVE-2022-40139 have been observed.\r\n\r\nCVE-2022-40139, CVE-2022-40140, CVE-2022-40141, CVE-2022-40142, CVE-2022-40143\r\nTrend Micro Incorporated reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN.\r\n\r\nCVE-2022-40144\r\nAkinori Takeuchi of Cyber Defense Institute, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2022/JVNDB-2022-000071.html",
  "sec:cpe": {
    "#text": "cpe:/a:trendmicro:apex_one",
    "@product": "Apex One",
    "@vendor": "Trend Micro, Inc.",
    "@version": "2.2"
  },
  "sec:cvss": [
    {
      "@score": "6.8",
      "@severity": "Medium",
      "@type": "Base",
      "@vector": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
      "@version": "2.0"
    },
    {
      "@score": "7.8",
      "@severity": "High",
      "@type": "Base",
      "@vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "@version": "3.0"
    }
  ],
  "sec:identifier": "JVNDB-2022-000071",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/jp/JVN36454862/index.html",
      "@id": "JVN#36454862",
      "@source": "JVN"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2022-40139",
      "@id": "CVE-2022-40139",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2022-40140",
      "@id": "CVE-2022-40140",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2022-40141",
      "@id": "CVE-2022-40141",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2022-40142",
      "@id": "CVE-2022-40142",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2022-40143",
      "@id": "CVE-2022-40143",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2022-40144",
      "@id": "CVE-2022-40144",
      "@source": "CVE"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-40139",
      "@id": "CVE-2022-40139",
      "@source": "NVD"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-40140",
      "@id": "CVE-2022-40140",
      "@source": "NVD"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-40141",
      "@id": "CVE-2022-40141",
      "@source": "NVD"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-40142",
      "@id": "CVE-2022-40142",
      "@source": "NVD"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-40143",
      "@id": "CVE-2022-40143",
      "@source": "NVD"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-40144",
      "@id": "CVE-2022-40144",
      "@source": "NVD"
    },
    {
      "#text": "https://www.ipa.go.jp/security/ciadr/vul/20220913-jvn.html",
      "@id": "JVN#36454862",
      "@source": "IPA SECURITY ALERTS"
    },
    {
      "#text": "https://www.jpcert.or.jp/english/at/2022/at220023.html",
      "@id": "JPCERT-AT-2022-0023",
      "@source": "JPCERT"
    },
    {
      "#text": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
      "@id": "CVE-2022-40139",
      "@source": "CISA Known Exploited Vulnerabilities Catalog"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-20",
      "@title": "Improper Input Validation(CWE-20)"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-200",
      "@title": "Information Exposure(CWE-200)"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-264",
      "@title": "Permissions(CWE-264)"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-287",
      "@title": "Improper Authentication(CWE-287)"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-59",
      "@title": "Link Following(CWE-59)"
    }
  ],
  "title": "Multiple vulnerabilities in Trend Micro Apex One and Trend Micro Apex One as a Service"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-40144 (GCVE-0-2022-40144)

GHSA-MR2G-23MQ-VJ3H

CERTFR-2022-AVI-817

Solution

Contournement provisoire

CERTFR-2022-AVI-817

Solution

Contournement provisoire

FKIE_CVE-2022-40144

GSD-2022-40144

JVNDB-2022-000071

Tags

Sightings

Nomenclature