CVE-2019-14685

CWE-4283 documents3 sources

Severity

7.8HIGH

EPSS

0.1%

top 72.13%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Trend Micro Trend Micro Security (consumer)Trendmicro Antivirus \+ Security 2019 Trendmicro Internet Security 2019 +2 more

Timeline

PublishedAug 21

Latest updateMay 24

Description

A local privilege escalation vulnerability exists in Trend Micro Security 2019 (v15.0) in which, if exploited, would allow an attacker to manipulate a specific product feature to load a malicious service.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages5 packages

▶NVDtrendmicro/maximum_security_201915.0

▶NVDtrendmicro/premium_security_201915.0

▶NVDtrendmicro/internet_security_201915.0

▶NVDtrendmicro/antivirus_\+_security_201915.0

▶CVEListV5trend_micro/trend_micro_security_(consumer)2019 (15.0)

🔴Vulnerability Details

GHSA

GHSA-vvp7-94rj-24rc: A local privilege escalation vulnerability exists in Trend Micro Security 2019 (v15↗2022-05-24

▶

CVEList

CVE-2019-14685: A local privilege escalation vulnerability exists in Trend Micro Security 2019 (v15↗2019-08-21

▶