CVE-2023-52330: 
Trend Micro Apex One Agent vulnerability analysis and mitigation

A cross-site scripting (XSS) vulnerability was discovered in Trend Micro Apex Central (CVE-2023-52330). The vulnerability was reported by security researcher Elias Martinez through the Zero Day Initiative and was publicly disclosed on January 11, 2024. This vulnerability affects Trend Micro Apex Central 2019 installations with builds before 6570 on Windows platforms (Vendor Advisory).

The vulnerability is classified as a cross-site scripting privilege escalation issue within the Policy Management functionality. The specific flaw exists due to the lack of proper validation of user-supplied data, which can lead to the injection of arbitrary script. The vulnerability has been assigned a CVSS v3.1 base score of 5.4 (Medium) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N. Authentication is required to exploit this vulnerability, and user interaction is necessary as the target must visit a malicious page or open a malicious file (ZDI Advisory).

An attacker who successfully exploits this vulnerability can leverage it to escalate privileges to resources normally protected from the user. The impact is limited to confidentiality and integrity, with no effect on availability (ZDI Advisory).

Trend Micro has released Patch 8 r2 (build 6660) to address this vulnerability. The patch is available through Trend Micro's Download Center. Customers are strongly encouraged to update to the latest build as soon as possible, even though specific conditions must be met for successful exploitation (Vendor Advisory).