cbcvebase.
CVE-2023-28929
published 2023-06-26

CVE-2023-28929: Trend Micro Security 2021, 2022, and 2023 (Consumer) are vulnerable to a DLL Hijacking vulnerability which could allow an attacker to use a specific executable…

PriorityP336high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
0.37%
28.5th percentile
Trend Micro Security 2021, 2022, and 2023 (Consumer) are vulnerable to a DLL Hijacking vulnerability which could allow an attacker to use a specific executable file as an execution and/or persistence mechanism which could execute a malicious program each time the executable file is started.

Affected

13 ranges
VendorProductVersion rangeFixed in
trend_micro_inctrend_micro_security>= 2023 < 17.7.163417.7.1634
trendmicroantivirus_+_security_2021<= 17.0.1412
trendmicroantivirus_+_security_2022<= 17.7.1476
trendmicroantivirus_+_security_2023<= 17.7.1476
trendmicrointernet_security_2021<= 17.0.1412
trendmicrointernet_security_2022<= 17.7.1476
trendmicrointernet_security_2023<= 17.7.1476
trendmicromaximum_security_2021<= 17.0.1412
trendmicromaximum_security_2022<= 17.7.1476
trendmicromaximum_security_2023<= 17.7.1476
trendmicropremium_security_2021<= 17.0.1412
trendmicropremium_security_2022<= 17.7.1476
trendmicropremium_security_2023<= 17.7.1476
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.