Trend Micro Apex One Security Agent iCore Service Signature Verification Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability

A privilege escalation vulnerability exists in Trend Micro Apex One Security Agent that allows local attackers with low-privileged code execution to elevate their permissions to higher privilege levels on affected systems. This vulnerability poses a significant risk because an attacker who gains initial low-level access can use it to obtain full system control. Security teams should prioritize patching Trend Micro Apex One Security Agent systems and review access controls to prevent unauthorized code execution on endpoints running this software.