CVE-2021-43772

CWE-552 — Files Accessible to External Parties3 documents3 sources

Severity

5.5MEDIUM

EPSS

0.1%

top 75.73%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Trendmicro Antivirus\+ Security Trendmicro Internet Security Trendmicro Maximum Security +2 more

Timeline

PublishedDec 3

Latest updateDec 4

Description

Trend Micro Security 2021 v17.0 (Consumer) contains a vulnerability that allows files inside the protected folder to be modified without any detection.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

▶CVEListV5trend_micro/trend_micro_security_2021_(consumer)17.0

▶NVDtrendmicro/maximum_security2021

▶NVDtrendmicro/premium_security2021

▶NVDtrendmicro/internet_security2021

▶NVDtrendmicro/antivirus\+_security2021

🔴Vulnerability Details

GHSA

GHSA-pmx6-p7g8-55gf: Trend Micro Security 2021 v17↗2021-12-04

▶

CVEList

CVE-2021-43772: Trend Micro Security 2021 v17↗2021-12-03

▶