How severe is CVE-2023-47198?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.8 out of 10.

What type of vulnerability is CVE-2023-47198?

This is classified as CWE-346, which is a common weakness in software security.

CVE-2023-47198 - HIGH Severity | CVSS 7.8

Vulnerability Description

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This vulnerability is similar to, but not identical to, CVE-2023-47199.

Related Vulnerabilities

CVE-1999-1549

HIGH

CVSS:7.8(High)

Lynx 2.x does not properly distinguish between internal and external HTML, which may allow a local attacker to read a "secure" hidden form value from a temporary file and craft a LYNXOPTIONS: URL that...

CWE-3461999

CVE-2018-6764

HIGH

CVSS:7.8(High)

util/virlog.c in libvirt does not properly determine the hostname on LXC container startup, which allows local guest OS users to bypass an intended container protection mechanism and execute arbitrary...

CWE-3462018

CVE-2019-1235

HIGH

CVSS:7.8(High)

An elevation of privilege vulnerability exists in Windows Text Service Framework (TSF) when the TSF server process does not validate the source of input or commands it receives, aka 'Windows Text Serv...

CWE-3462019

CVE-2020-1449

HIGH

CVSS:7.8(High)

A remote code execution vulnerability exists in Microsoft Project software when the software fails to check the source markup of a file, aka 'Microsoft Project Remote Code Execution Vulnerability'.

CWE-3462020

CVE-2020-16951

HIGH

CVSS:7.8(High)

<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulnera...

CWE-3462020

CVE-2020-16952

HIGH

CVSS:7.8(High)

CWE-3462020