CVE-2022-35234

CWE-125Out-of-bounds Read3 documents3 sources
Severity
7.1HIGH
EPSS
0.1%
top 68.62%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Trend Micro Trend Micro Security(consumer)Trend Micro Trend Micro Security (consumer)Trendmicro Security
Timeline
PublishedJul 30
Latest updateJul 31

Description

Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:HExploitability: 1.8 | Impact: 5.2

Affected Packages3 packages

CVEListV5trend_micro/trend_micro_security(consumer)2022 (17.7.1383 and below)
CVEListV5trend_micro/trend_micro_security_(consumer)2022 (17.7.1383 and below)
NVDtrendmicro/security2021, 2022+1

Patches

Patch: helpcenter.trendmicro.comPatch: helpcenter.trendmicro.com

🔴Vulnerability Details

2
GHSA
GHSA-v8m5-83ww-w723: Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker2022-07-31
CVEList
CVE-2022-35234: Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker2022-07-29
CVE-2022-35234 (HIGH CVSS 7.1) | Trend Micro Security 2021 and 2022 | cvebase.io