CVE-2023-32604 (apex_central)

Affected versions Trend Micro Apex Central (on-premise) are vulnerable to potential authenticated reflected cross-site scripting (XSS) attacks due to user input validation and sanitization issues.

Please note: an attacker must first obtain authentication to Apex Central on the target system in order to exploit this vulnerability.

This is similar to, but not identical to CVE-2023-32605.

apex apex central attacks authentication cross-site cve exploit input input validation micro order premise scripting system target trend trend micro validation vulnerability vulnerable xss