{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"state":"PUBLISHED","cveId":"CVE-2022-41748","assignerOrgId":"7f7bd7df-cffe-4fdb-ab6d-859363b89272","assignerShortName":"trendmicro","dateUpdated":"2024-08-03T12:49:44.167Z","dateReserved":"2022-09-28T00:00:00.000Z","datePublished":"2022-10-10T00:00:00.000Z"},"containers":{"cna":{"providerMetadata":{"orgId":"7f7bd7df-cffe-4fdb-ab6d-859363b89272","shortName":"trendmicro","dateUpdated":"2022-10-10T00:00:00.000Z"},"descriptions":[{"lang":"en","value":"A registry permissions vulnerability in the Trend Micro Apex One Data Loss Prevention (DLP) module could allow a local attacker with administrative credentials to bypass certain elements of the product's anti-tampering mechanisms on affected installations. Please note: an attacker must first obtain administrative credentials on the target system in order to exploit this vulnerability."}],"affected":[{"vendor":"Trend Micro","product":"Trend Micro Apex One","versions":[{"version":"2019 (on-prem) and SaaS","status":"affected"}]}],"references":[{"url":"https://success.trendmicro.com/solution/000291645"}],"problemTypes":[{"descriptions":[{"type":"text","lang":"en","description":"Registry Permissions"}]}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T12:49:44.167Z"},"title":"CVE Program Container","references":[{"url":"https://success.trendmicro.com/solution/000291645","tags":["x_transferred"]}]}]}}