Trend Micro Apex One ããã³ Trend Micro Apex One SaaS ã«ããã¦ãè¤æ°ã®èå¼±æ§ã確èªããã¾ããã
èå¼±æ§ è£½å CVE-2024-36302
CVE-2024-36303
CVE-2024-36304
CVE-2024-36305
CVE-2024-36306
CVE-2024-36307
CVE-2024-37289
CVE-2024-39753Trend Micro Apex One
Trend Micro Apex One SaaSâ æ¬èå¼±æ§ã«ã¤ãã¦
サポート情報 : トレンドマイクロ
æ¬èå¼±æ§ã¸å¯¾å¿ããããã«ã¯ãå製åã®ææ°ãã«ãã®ãå©ç¨ããé¡ããããã¾ãã
詳細ã«ã¤ãã¦ã¯ã以ä¸ã®ã¢ã©ã¼ã/ã¢ããã¤ã¶ãªãã確èªãã ããã
ã¢ã©ã¼ã/ã¢ããã¤ã¶ãªï¼Trend Micro Apex One ããã³ Trend Micro Apex One SaaS ã§ç¢ºèªãããè¤æ°ã®èå¼±æ§ã«ã¤ãã¦ï¼2024å¹´5æï¼
CVE-2024-36302ãCVE-2024-36303: éä¿¡å ã®æ¤è¨¼ã®ä¸ååãã«ãã権éææ ¼ã®èå¼±æ§
ZDI-CAN-22039, ZDI-CAN-22481
CVSSv3: 7.8: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Apex One ããã³ Apex One SaaS ã®ã»ãã¥ãªãã£ã¨ã¼ã¸ã§ã³ãã«ããã¦ãéä¿¡å ã®æ¤è¨¼ã®ä¸ååãã«ãã権éææ ¼ã®èå¼±æ§ã確èªããã¾ããããã®èå¼±æ§ã«ãããæ»æè ã¯ãã¼ã«ã«ã§æ¨©éææ ¼ãè¡ããå¯è½æ§ãããã¾ãã
ãã®èå¼±æ§ãæªç¨ããã«ã¯ã対象ã®ã·ã¹ãã ã§ä½ã権éã§ã³ã¼ããå®è¡ã§ããå¿ è¦ãããã¾ããCVE-2024-36304: Time-of-check Time-of-use (TOCTOU) 競åç¶æ ã«ãã権éææ ¼ã®èå¼±æ§
ZDI-CAN-22667
CVSSv3: 7.8: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Apex One ããã³ Apex One SaaS ã®ã»ãã¥ãªãã£ã¨ã¼ã¸ã§ã³ãã«ããã¦ãTime-of-check Time-of-use (TOCTOU) 競åç¶æ ã®èå¼±æ§ã確èªããã¾ããããã®èå¼±æ§ã«ãããæ»æè ã¯ãã¼ã«ã«ã§æ¨©éææ ¼ãè¡ããå¯è½æ§ãããã¾ãã
ãã®èå¼±æ§ãæªç¨ããã«ã¯ã対象ã®ã·ã¹ãã ã§ä½ã権éã§ã³ã¼ããå®è¡ã§ããå¿ è¦ãããã¾ããCVE-2024-36305: ãªã³ã¯è§£éã®åé¡ã«ãã権éææ ¼ã®èå¼±æ§
ZDI-CAN-22693
CVSSv3: 7.8: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Apex One ããã³ Apex One SaaS ã®ã»ãã¥ãªãã£ã¨ã¼ã¸ã§ã³ãã«ããã¦ããªã³ã¯è§£éã®åé¡ã®èå¼±æ§ï¼Link followingï¼ã確èªããã¾ããããã®èå¼±æ§ã«ãããæ»æè ã¯ãã¼ã«ã«ã§æ¨©éææ ¼ãè¡ããå¯è½æ§ãããã¾ãã
ãã®èå¼±æ§ãæªç¨ããã«ã¯ã対象ã®ã·ã¹ãã ã§ä½ã権éã§ã³ã¼ããå®è¡ã§ããå¿ è¦ãããã¾ããCVE-2024-36306: ãã¡ã¼ã¸ã¯ãªã¼ã³ãããã¨ã³ã¸ã³ã«ããããªã³ã¯è§£éã®åé¡ã«ããDoSæ»æã®èå¼±æ§
ZDI-CAN-22038
CVSSv3: 6.1: AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
Apex One ããã³ Apex One SaaS ã®ã»ãã¥ãªãã£ã¨ã¼ã¸ã§ã³ãã®ãã¡ã¼ã¸ã¯ãªã¼ã³ãããã¨ã³ã¸ã³ã«ããã¦ããªã³ã¯è§£éã®åé¡ã®èå¼±æ§ï¼Link followingï¼ã確èªããã¾ããããã®èå¼±æ§ã«ãããæ»æè 㯠Dosæ»æãè¡ããå¯è½æ§ãããã¾ãã
ãã®èå¼±æ§ãæªç¨ããã«ã¯ã対象ã®ã·ã¹ãã ã§ä½ã権éã§ã³ã¼ããå®è¡ã§ããå¿ è¦ãããã¾ããCVE-2024-36307: ãªã³ã¯è§£éã®åé¡ã«ããæ å ±é示ã®èå¼±æ§
ZDI-CAN-22032
CVSSv3: 4.7: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Apex One ããã³ Apex One SaaS ã®ã»ãã¥ãªãã£ã¨ã¼ã¸ã§ã³ãã«ããã¦ããªã³ã¯è§£éã®åé¡ã®èå¼±æ§ï¼Link followingï¼ã確èªããã¾ããããã®èå¼±æ§ã«ãããæ»æè ãæ¬æ¥é²è¦§ã§ããªãæ å ±ã®ä¸é¨æ å ±ã確èªãããã¨ãã§ããå¯è½æ§ãããã¾ãã
ãã®èå¼±æ§ãæªç¨ããã«ã¯ã対象ã®ã·ã¹ãã ã§ä½ã権éã§ã³ã¼ããå®è¡ã§ããå¿ è¦ãããã¾ããCVE-2024-37289: ä¸é©åãªæ¨©éã®ä»ä¸ã«ãã権éææ ¼ã®èå¼±æ§
ZDI-CAN-21599
CVSSv3: 7.8: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Apex One ããã³ Apex One SaaS ã«ããã¦ä¸é©åãªã¢ã¯ã»ã¹æ¨©éã®èå¼±æ§ã確èªããã¾ããããã®èå¼±æ§ã«ãããæ»æè ã¯ãã¼ã«ã«ã§æ¨©éãææ ¼ãããã¨ãã§ããå¯è½æ§ãããã¾ãã
ãã®èå¼±æ§ãæªç¨ããã«ã¯ã対象ã®ã·ã¹ãã ã§ä½ã権éã§ã³ã¼ããå®è¡ã§ããå¿ è¦ãããã¾ããCVE-2024-39753: SQLã¤ã³ã¸ã§ã¯ã·ã§ã³ã«ãããªã¢ã¼ãã³ã¼ãå®è¡ã®èå¼±æ§
DCX
ZDI-CAN-22968
CVSSv3: 7.5: AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Apex One ããã³ Apex One SaaS ã® modOSCE ã®ã¢ã¸ã¥ã¼ã«ã«ããã¦ãSQL ã¤ã³ã¸ã§ã¯ã·ã§ã³ã®èå¼±æ§ã確èªããã¾ããããã®èå¼±æ§ã«ãããæ»æè ã¯é éã§ã³ã¼ãå®è¡ãè¡ããå¯è½æ§ãããã¾ãããã®èå¼±æ§ãæªç¨ããã«ã¯ã対象ã®ã·ã¹ãã ã§ä½ã権éã§ã³ã¼ããå®è¡ã§ããå¿ è¦ãããã¾ãã
ä¿®æ£ãããåé¡
æ¬ãªãªã¼ã¹ã¯ã 次ã®ååé¡ãä¿®æ£ãã¾ããåé¡ 1 (pct-18822),
Webã³ã³ã½ã¼ã«ã®æ å ±æ¼ãã対ç (DLP) ã®äºåå®ç¾©æ¸ã¿ã®ãã¼ã¯ã¼ããªã¹ããã製åããã¥ã¡ã³ãã®èª¬æã¨ä¸è´ããªãåé¡ä¿®æ£
æ¬ãªãªã¼ã¹ã®é©ç¨å¾ã¯ãApex Oneãµã¼ãããã°ã©ã ãã¢ãããã¼ãããããã®åé¡ãä¿®æ£ããã¾ãã
åé¡ 2 (pct-17724),
SQLæ¥ç¶ãã§ãã¯ã®å¤±æã«ãããApex One Patch (ãã«ã12932) ãã¤ã³ã¹ãã¼ã«ã§ããªãåé¡ä¿®æ£
æ¬ãªãªã¼ã¹ã®é©ç¨å¾ã¯ãApex Oneãµã¼ãããã°ã©ã ãã¢ãããã¼ãããããã®åé¡ãä¿®æ£ããã¾ãã
åé¡ 3 (pct-23427),
é¢é£ããæ©æ¢°å¦ç¿åæ¤ç´¢ãã°ããApex Central Webã³ã³ã½ã¼ã«ã®ãã°ã¯ã¨ãªã«è¡¨ç¤ºãããªãåé¡ä¿®æ£
æ¬ãªãªã¼ã¹ã®é©ç¨å¾ã¯ãApex Oneãµã¼ãããã°ã©ã ãã¢ãããã¼ãããããã®åé¡ãä¿®æ£ããã¾ãã
åé¡ 4 (pct-15334),
Webã³ã³ã½ã¼ã«ã®ãã¼ã¸ã§ãã«ããªã³ã¯ãã¯ãªãã¯ãã¦ãããã«ãã®å 容ã表示ãããªããã¨ãããåé¡ä¿®æ£
æ¬ãªãªã¼ã¹ã®é©ç¨å¾ã¯ãApex Oneãµã¼ãããã°ã©ã ãã¢ãããã¼ãããããã®åé¡ãä¿®æ£ããã¾ãã
åé¡ 5 (pct-24077),
tmcomm.sysã«é¢é£ããåé¡ã«èµ·å ãã¦ãã»ãã¥ãªãã£ã¨ã¼ã¸ã§ã³ãã¨ã³ããã¤ã³ããå¿çãåæ¢ãããã¨ãããåé¡ä¿®æ£
æ¬ãªãªã¼ã¹ã®é©ç¨å¾ã¯ãApex Oneã»ãã¥ãªãã£ã¨ã¼ã¸ã§ã³ãããã°ã©ã ãã¢ãããã¼ãããããã®åé¡ãä¿®æ£ããã¾ãã
æé
ãã®æ©è½ãæå¹ã«ããã«ã¯:
æ¬ãªãªã¼ã¹ãã¤ã³ã¹ãã¼ã«ãã¾ã (ãã¤ã³ã¹ãã¼ã«ããåç §)ã
ããã¹ãã¨ãã£ã¿ã使ç¨ãã¦ãApex Oneãµã¼ãã®ã¤ã³ã¹ãã¼ã«ãã£ã¬ã¯ããªã®ã\PCCSRV\ããã©ã«ãã«ãããofcscan.iniããã¡ã¤ã«ãéãã¾ãã
[Global Setting] ã»ã¯ã·ã§ã³ã«æ¬¡ã®ãã¼ã追å ãããã®å¤ãã0ãã«è¨å®ãã¾ãã
[Global Setting]
WatchDogSPLog=0
å¤æ´å 容ãä¿åãã¦ãã¡ã¤ã«ãéãã¾ãã
Apex One Webã³ã³ã½ã¼ã«ãéãã[ã¨ã¼ã¸ã§ã³ã] > [ã°ãã¼ãã«ã¨ã¼ã¸ã§ã³ãè¨å®] ç»é¢ã«ç§»åãã¾ãã
[ä¿å] ãã¯ãªãã¯ãã¦è¨å®ãã»ãã¥ãªãã£ã¨ã¼ã¸ã§ã³ãã«é ä¿¡ãã¾ããApex Oneãµã¼ãããã»ãã¥ãªãã£ã¨ã¼ã¸ã§ã³ãã«ã³ãã³ããé ä¿¡ããããã¹ã¦ã®ã»ãã¥ãªãã£ã¨ã¼ã¸ã§ã³ãã¨ã³ããã¤ã³ãã§æ¬¡ã®ã¬ã¸ã¹ããªã¨ã³ããªã追å ããã¾ãã
ãã¼å:
32ããã: HKEY_LOCAL_MACHINE\SOFTWARE\TrendMicro\PC-cillinNTCorp\CurrentVersion\Misc.
64ããã: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\TrendMicro\PC-cillinNTCorp\CurrentVersion\Misc.
åå: WatchDogSPLog
種é¡: DWORD
ãã¼ã¿: 0
æ°æ©è½
æ¬ãªãªã¼ã¹ã§ã¯ã 次ã®æ°æ©è½ãæä¾ããã¾ããæ©è½ 1 (acc-3225), (acc-4878),
æ å ±æ¼ãã対çãã¢ãããã¼ããããUSBãã¶ãªã³ã°ã¨Bluetoothãããã¹ãããã«å¯¾ããããã¤ã¹ã³ã³ããã¼ã«ããµãã¼ããããããã«ãªãã¾ããæ©è½ 2 (pct-17053), (pct-17438), (pct-17581), (pct-13490), (pct-11562), (pct-11366),
ã»ãã¥ãªãã£ã¨ã¼ã¸ã§ã³ãã®ã¢ãããã¼ãããã»ã¹ãå¼·åãããæ å ±æ¼ãã対çãã³ãã¬ã¼ããApex Oneãµã¼ãããã¢ãããã¼ããããããã«ãªãã¾ããæ©è½ 3 (pct-23341),
Trend Micro Apex One™ Readme
OpenJDKããã¼ã¸ã§ã³11.0.22+7-LTSã«ã¢ãããã¼ãããã製åã®ã»ãã¥ãªãã£ãå¼·åããã¾ãã