Trend Micro Apex One (Mac) Agent Cache Mechanism Time-of-Check Time-of-Use Local Privilege Escalation Vulnerability

A time-of-check time-of-use vulnerability has been identified in the cache mechanism of the Trend Micro Apex One (Mac) agent. This vulnerability could allow a local attacker to escalate privileges on affected installations. The issue arises from improper cache key validation during signature verification, enabling an attacker to gain elevated rights and execute arbitrary code with root privileges. To exploit this vulnerability, an attacker must first have the ability to run low-privileged code on the target system.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a local attacker to execute code with elevated rights, potentially compromising the entire system.

Remediation

Trend Micro has released a Critical Patch for Apex One (Mac) to address this vulnerability. More details can be found on the Trend Micro Success Portal.