Trend Micro Releases Update for Deep Security Agent Vulnerability
/ 1 min read
Trend Micro addresses critical vulnerability in Deep Security Agent. Trend Micro has released updates for its Deep Security Agent to fix a security vulnerability (CVE-2024-51503) that could allow remote code execution through command injection. Affected versions prior to 20.0.1-21510 on Windows are at risk, and users are urged to upgrade to the latest version to mitigate potential exploits. The vulnerability requires an attacker to have low-privileged access to the target system and domain user privileges to affect other machines. Trend Micro emphasizes the importance of applying these patches promptly and reviewing security policies to protect critical systems. The company acknowledges the contributions of Simon Zuckerbraun from its Zero Day Initiative for responsibly disclosing the issue.