CVE-2022-26871

Summary

An arbitrary file upload vulnerability in Trend Micro Apex Central could allow an unauthenticated remote attacker to upload an arbitrary file which could lead to remote code execution.

Affected Software

VendorProductVersion RangeStatus
Trend MicroTrend Micro Apex Central2019 (on-premise), SaaSaffected

Weaknesses

  • Arbitrary File Upload

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: yes
    • Technical Impact: total

Additional References

References