CVE-2024-48903: 
Trend Micro Deep Security Agent vulnerability analysis and mitigation

An improper access control vulnerability (CVE-2024-48903) was discovered in Trend Micro Deep Security Agent 20. The vulnerability was disclosed on October 22, 2024, affecting Windows-based installations of the Deep Security Agent versions before 20.0.1-17380 (NVD, Trend Micro).

The vulnerability exists within the Anti-Malware Solution Platform and results from insufficient access control on a sensitive folder. The issue has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, indicating local access requirements with high impact potential (ZDI Advisory, Trend Micro).

If successfully exploited, this vulnerability allows an attacker to escalate privileges and execute arbitrary code in the context of SYSTEM, potentially gaining full control over the affected system (ZDI Advisory).

Trend Micro has released version 20.0.1-17380 (20 LTS Update 2024-08-21) to address this vulnerability. Users are strongly encouraged to update to the latest version as soon as possible. Additionally, organizations should review remote access to critical systems and ensure policies and perimeter security are up-to-date (Trend Micro).

The vulnerability was responsibly disclosed by security researcher Abdelhamid Naceri working with Trend Micro's Zero Day Initiative (Trend Micro).