Development Micro has launched an advisory protecting a important zero-day flaw — tracked as CVE-2023-41179 — that impacts Apex One, Apex One SaaS, and Fear-Free Enterprise Safety.
The vulnerability will be exploited for arbitrary code execution, and it revolves across the “merchandise’ means to uninstall third-party safety software program.”
The advisory, written in Japanese, particulars how an attacker would want entry to a product’s administrative console and would have needed to have stolen its administration console authentication previous to the assault, because the vulnerability cannot infiltrate a community by itself.
Development Micro additionally famous that this vulnerability has been exploited within the wild, having “confirmed that this vulnerability has been utilized in precise assaults. We advocate updating to the most recent model as quickly as attainable.”
Patches have been launched for merchandise impacted by this vulnerability.