CVE-2023-28929
published 2023-06-26CVE-2023-28929: Trend Micro Security 2021, 2022, and 2023 (Consumer) are vulnerable to a DLL Hijacking vulnerability which could allow an attacker to use a specific executable…
PriorityP336high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
0.37%
28.5th percentile
Trend Micro Security 2021, 2022, and 2023 (Consumer) are vulnerable to a DLL Hijacking vulnerability which could allow an attacker to use a specific executable file as an execution and/or persistence mechanism which could execute a malicious program each time the executable file is started.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| trend_micro_inc | trend_micro_security | >= 2023 < 17.7.1634 | 17.7.1634 |
| trendmicro | antivirus_+_security_2021 | <= 17.0.1412 | — |
| trendmicro | antivirus_+_security_2022 | <= 17.7.1476 | — |
| trendmicro | antivirus_+_security_2023 | <= 17.7.1476 | — |
| trendmicro | internet_security_2021 | <= 17.0.1412 | — |
| trendmicro | internet_security_2022 | <= 17.7.1476 | — |
| trendmicro | internet_security_2023 | <= 17.7.1476 | — |
| trendmicro | maximum_security_2021 | <= 17.0.1412 | — |
| trendmicro | maximum_security_2022 | <= 17.7.1476 | — |
| trendmicro | maximum_security_2023 | <= 17.7.1476 | — |
| trendmicro | premium_security_2021 | <= 17.0.1412 | — |
| trendmicro | premium_security_2022 | <= 17.7.1476 | — |
| trendmicro | premium_security_2023 | <= 17.7.1476 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-06-26
Published