Trend Micro Apex One as a Service Out-of-Band Security Patch Update - June 12, 2019

Product / Version includes:

Apex One as a ServiceAll

Last updated: 2021/08/28

Solution ID: KA-0009423

Category: Update

Summary

On June 12, 2019, Trend Micro deployed an out-of-band update to the backend service to resolve a reported security issue.

Since there was no end-user downtime experienced or user interaction required, a standard emergency notification bulletin was not distributed ahead of time.

The June 12, 2019, out-of-band security update addressed a critical issue where a customer's agent information could potentially be obtained by a third party who had access to both the customer's server IP address and unique service URL, allowing such third party to potentially perform other unauthorized actions (e.g. agent uninstall) via an API call.

The out-of-band update was completed as of 21:00 (UTC +8) on June 12, 2019.

There is no evidence that the issue was exploited by any malicious outside entities and was promptly addressed after a responsible disclosure.

Was this article helpful?

Featured

Automation Center

Education Portal

Online Help Center

Service Status

TrendConnect

Trend Micro Apex One as a Service Out-of-Band Security Patch Update - June 12, 2019

Trend Micro Apex One as a Service Out-of-Band Security Patch Update - June 12, 2019

Product / Version includes:

Summary