cbcvebase.
CVE-2022-40707
published 2022-09-28

CVE-2022-40707: An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to…

PriorityP410low3.3CVSS 3.1
AVLACLPRLUINSUCLINAN
EPSS
0.16%
5.8th percentile
An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40708.

Affected

2 ranges
VendorProductVersion rangeFixed in
trend_microtrend_micro_deep_security
trendmicrodeep_security_agent
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.