Vulnerabilities > CVE-2021-43772 - Files or Directories Accessible to External Parties vulnerability in Trendmicro products

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

local

low complexity

trendmicro

CWE-552

NVD

Published: 2021-12-03

Updated: 2024-11-21

Summary

Trend Micro Security 2021 v17.0 (Consumer) contains a vulnerability that allows files inside the protected folder to be modified without any detection.

Vulnerable Configurations

Part	Description	Count
Application	Trendmicro Trendmicro Antivirus+ Security * Trendmicro Internet Security 8.0 Trendmicro Internet Security 10.0 Trendmicro Internet Security 11.0 Trendmicro Internet Security 11.1.1005 Trendmicro Internet Security 12.0 Trendmicro Internet Security 12.0.1191 Trendmicro Internet Security 15.0 Trendmicro Internet Security 15.00.1163 Trendmicro Internet Security 2010 Trendmicro Maximum Security 11.0 Trendmicro Maximum Security 11.1.1005 Trendmicro Maximum Security 12.0 Trendmicro Maximum Security 12.0.1191 Trendmicro Maximum Security 15.0 Trendmicro Maximum Security 15.0.0.1163 Trendmicro Maximum Security 16.0 Trendmicro Maximum Security 17.0 Trendmicro Premium Security 11.0 Trendmicro Premium Security 11.1.1005 Trendmicro Premium Security 12.0 Trendmicro Premium Security 12.0.1191 Trendmicro Premium Security 15.0 Trendmicro Premium Security 15.0.0.1163	24
OS	Microsoft Microsoft Windows -	1

Common Weakness Enumeration (CWE)

CWE-552 - Files or Directories Accessible to External Parties

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References