Trend Micro Maximum Security vulnerabilities

6 known vulnerabilities affecting trend_micro/trend_micro_maximum_security.

Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH5MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2022-30687HIGHCVSS 7.1v2022 (17.7)2022-05-27
CVE-2022-30687 [HIGH] CWE-59 CVE-2022-30687: Trend Micro Maximum Security 2022 is vulnerable to a link following vulnerability that could allow a Trend Micro Maximum Security 2022 is vulnerable to a link following vulnerability that could allow a low privileged local user to manipulate the product's secure erase feature to delete arbitrary files.
cvelistv5nvd
CVE-2018-6235HIGHCVSS 7.8v20182018-05-25
CVE-2018-6235 [HIGH] CWE-787 CVE-2018-6235: An Out-of-Bounds write privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) An Out-of-Bounds write privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target syst
cvelistv5nvd
CVE-2018-6232HIGHCVSS 7.8v20182018-05-25
CVE-2018-6232 [HIGH] CWE-120 CVE-2018-6232: A buffer overflow privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 A buffer overflow privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x22205C by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in
cvelistv5nvd
CVE-2018-6233HIGHCVSS 7.8v20182018-05-25
CVE-2018-6233 [HIGH] CWE-120 CVE-2018-6233: A buffer overflow privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 A buffer overflow privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x222060 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in
cvelistv5nvd
CVE-2018-6236HIGHCVSS 7.0v20182018-05-25
CVE-2018-6236 [HIGH] CWE-362 CVE-2018-6236: A Time-of-Check Time-of-Use privilege escalation vulnerability in Trend Micro Maximum Security (Cons A Time-of-Check Time-of-Use privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x222813 by the tmusa driver. An attacker must first obtain the ability to execute low-privileged code on the target system
cvelistv5nvd
CVE-2018-6234MEDIUMCVSS 5.5v20182018-05-25
CVE-2018-6234 [MEDIUM] CWE-125 CVE-2018-6234: An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on t
cvelistv5nvd