CVE-2022-30703

3 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 68.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Trend Micro Trend Micro Security (consumer)Trendmicro Security
Timeline
PublishedJun 9
Latest updateJun 10

Description

Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an exposed dangerous method vulnerability that could allow an attacker to obtain access to leaked kernel addresses and disclose sensitive information. This vulnerability could also potentially be chained for privilege escalation.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5trend_micro/trend_micro_security_(consumer)2022 (17.7.1383 and below)
NVDtrendmicro/security2021, 2022+1

🔴Vulnerability Details

2
GHSA
GHSA-77cp-75v9-j6qw: Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an exposed dangerous method vulnerability that could allow an attacker to obtain access2022-06-10
CVEList
CVE-2022-30703: Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an exposed dangerous method vulnerability that could allow an attacker to obtain access2022-06-09
CVE-2022-30703 (HIGH CVSS 7.8) | Trend Micro Security 2021 and 2022 | cvebase.io