Trendmicro Deep Security Agent vulnerabilities

CVE-2025-30640 [HIGH] CWE-59 CVE-2025-30640: A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local attacker A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CVE-2025-30641 [HIGH] CWE-59 CVE-2025-30641: A link following vulnerability in the anti-malware solution portion of Trend Micro Deep Security 20. A link following vulnerability in the anti-malware solution portion of Trend Micro Deep Security 20.0 agents could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CVE-2025-30642 [MEDIUM] CWE-59 CVE-2025-30642: A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local attacker A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local attacker to create a denial of service (DoS) situation on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CVE-2024-55955 [MEDIUM] CWE-427 CVE-2024-55955: An incorrect permissions assignment vulnerability in Trend Micro Deep Security 20.0 agents between v An incorrect permissions assignment vulnerability in Trend Micro Deep Security 20.0 agents between versions 20.0.1-9400 and 20.0.1-23340 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vu

CVE-2024-51503 [HIGH] CWE-78 CVE-2024-51503: A security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20 Age A security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20 Agent could allow an attacker to escalate privileges and execute arbitrary code on an affected machine. In certain circumstances, attackers that have legitimate access to the domain may be able to remotely inject commands to other machines in the same domai

CVE-2024-48903 [HIGH] CWE-269 CVE-2024-48903: An improper access control vulnerability in Trend Micro Deep Security Agent 20 could allow a local a An improper access control vulnerability in Trend Micro Deep Security Agent 20 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CVE-2024-36358 [HIGH] CWE-1106 CVE-2024-36358: A link following vulnerability in Trend Micro Deep Security 20.x agents below build 20.0.1-3180 coul A link following vulnerability in Trend Micro Deep Security 20.x agents below build 20.0.1-3180 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CVE-2023-52338 [HIGH] CWE-59 CVE-2023-52338: A link following vulnerability in the Trend Micro Deep Security 20.0 and Trend Micro Cloud One - End A link following vulnerability in the Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerab

CVE-2023-52337 [HIGH] CWE-269 CVE-2023-52337: An improper access control vulnerability in Trend Micro Deep Security 20.0 and Trend Micro Cloud One An improper access control vulnerability in Trend Micro Deep Security 20.0 and Trend Micro Cloud One - Endpoint and Workload Security Agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this v

CVE-2022-40710 [HIGH] CWE-59 CVE-2022-40710: A link following vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Age A link following vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CVE-2022-40707 [LOW] CWE-125 CVE-2022-40707: An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Securit An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabili

CVE-2022-40709 [LOW] CVE-2022-40709: An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Securit An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. Th

CVE-2022-40708 [LOW] CVE-2022-40708: An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Securit An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. Th

CVE-2022-23120 [HIGH] CWE-94 CVE-2022-23120: A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to escalate privileges and run arbitrary code in the context of root. Please note: an attacker must first obtain access to the target agent in an un-activated and unconfigured state in order to exploi

CVE-2022-23119 [HIGH] CWE-22 CVE-2022-23119: A directory traversal vulnerability in Trend Micro Deep Security and Cloud One - Workload Security A A directory traversal vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to read arbitrary files from the file system. Please note: an attacker must first obtain compromised access to the target Deep Security Manager (DSM) or the target agent must be not yet activate