CVE-2019-15629

CWE-200 — Information Exposure3 documents3 sources

Severity

7.5HIGH

EPSS

0.6%

top 31.12%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Trendmicro Password Manager Trend Micro Trend Micro Password Manager FOR Android

Timeline

PublishedNov 25

Latest updateMay 24

Description

Trend Micro Password Manager versions 3.x, 5.0, and 5.1 for Android is affected by a FLAG_MISUSE vulnerability that could be exploited to allow the application to share information to third-party applications on the device.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5trend_micro/trend_micro_password_manager_for_androidVersion 3.x, 5.0, 5.1

▶NVDtrendmicro/password_manager3.0 — 3.7+2

🔴Vulnerability Details

GHSA

GHSA-4rfv-87fp-qxfm: Trend Micro Password Manager versions 3↗2022-05-24

▶

CVEList

CVE-2019-15629: Trend Micro Password Manager versions 3↗2019-11-25

▶