Trend Micro Security vulnerabilities
28 known vulnerabilities affecting trend_micro/trend_micro_security.
Total CVEs
28
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH21MEDIUM6
Vulnerabilities
Page 2 of 2
CVE-2020-25775P4MEDIUMCVSS 6.3v2020 (v16)2020-09-29
CVE-2020-25775 [MEDIUM] CWE-362 CVE-2020-25775: The Trend Micro Security 2020 (v16) consumer family of products is vulnerable to a security race con
The Trend Micro Security 2020 (v16) consumer family of products is vulnerable to a security race condition arbitrary file deletion vulnerability that could allow an unprivileged user to manipulate the product's secure erase feature to delete files with a higher set of privileges.
nvd
CVE-2019-19693P4HIGHCVSS 7.1v2020 (v16)2019-12-20
CVE-2019-19693 [HIGH] CWE-59 CVE-2019-19693: The Trend Micro Security 2020 consumer family of products contains a vulnerability that could allow
The Trend Micro Security 2020 consumer family of products contains a vulnerability that could allow a local attacker to disclose sensitive information or to create a denial-of-service condition on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
nvd
CVE-2020-8607P4MEDIUMCVSS 6.7v2020 (v16), 2019 (v15)2020-08-05
CVE-2020-8607 [MEDIUM] CWE-20 CVE-2020-8607: An input validation vulnerability found in multiple Trend Micro products utilizing a particular vers
An input validation vulnerability found in multiple Trend Micro products utilizing a particular version of a specific rootkit protection driver could allow an attacker in user-mode with administrator permissions to abuse the driver to modify a kernel address that may cause a system crash or potentially lead to code execution in kernel mode. An attacker
nvd
CVE-2022-35234P4HIGHCVSS 7.1v2022 (17.7.1383 and below)2022-07-30
CVE-2022-35234 [HIGH] CWE-125 CVE-2022-35234: Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Dis
Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine.
nvd
CVE-2021-44023P4HIGHCVSS 7.1v2021 (v17)2021-12-16
CVE-2021-44023 [HIGH] CWE-59 CVE-2021-44023: A link following denial-of-service (DoS) vulnerability in the Trend Micro Security (Consumer) 2021 f
A link following denial-of-service (DoS) vulnerability in the Trend Micro Security (Consumer) 2021 familiy of products could allow an attacker to abuse the PC Health Checkup feature of the product to create symlinks that would allow modification of files which could lead to a denial-of-service.
nvd
CVE-2022-30702P4MEDIUMCVSS 5.5v2022 (17.7.1130 and below)2022-06-09
CVE-2022-30702 [MEDIUM] CWE-125 CVE-2022-30702: Trend Micro Security 2022 and 2021 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Dis
Trend Micro Security 2022 and 2021 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure vulnerability that could allow an attacker to disclose sensitive information on an affected machine.
nvd
CVE-2022-37347P4MEDIUMCVSS 5.5v2022 (17.7.1383 and below)2022-09-19
CVE-2022-37347 [MEDIUM] CWE-125 CVE-2022-37347: Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Dis
Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine. This vulnerability is similar to, but not the same as CVE-2022-35234.
nvd
CVE-2019-19694P4MEDIUMCVSS 4.7v2019 (v15.0.0.1163 and below)2020-02-20
CVE-2019-19694 [MEDIUM] CVE-2019-19694: The Trend Micro Security 2019 (15.0.0.1163 and below) consumer family of products is vulnerable to a
The Trend Micro Security 2019 (15.0.0.1163 and below) consumer family of products is vulnerable to a denial of service (DoS) attack in which a malicious actor could manipulate a key file at a certain time during the system startup process to disable the product's malware protection functions or the entire product completely..
nvd
← Previous2 / 2