cvedb.io
CVE-2022-40707
LOW · CVSS 3.3
EPSS exploitation probability: 0%
Published 2022-09-28T21:15:14.967 · Last modified 2026-06-17T05:01:52.817

Summary

An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40708.

Affected products

trendmicro — deep_security_agent

Does this affect you?

Add your gear to cvedb and we'll alert you only when trendmicro ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.