Vulnerabilities > Trendmicro > High

DATE CVE VULNERABILITY TITLE RISK
2019-02-05 CVE-2018-18333 Untrusted Search Path vulnerability in Trendmicro products
A DLL hijacking vulnerability in Trend Micro Security 2019 (Consumer) versions below 15.0.0.1163 and below could allow an attacker to manipulate a specific DLL and escalate privileges on vulnerable installations.
local
low complexity
trendmicro CWE-426
7.8
2018-12-21 CVE-2018-18332 Incorrect Permission Assignment for Critical Resource vulnerability in Trendmicro Officescan XG
A Trend Micro OfficeScan XG weak file permissions vulnerability may allow an attacker to potentially manipulate permissions on some key files to modify other files and folders on vulnerable installations.
network
low complexity
trendmicro CWE-732
7.5
2018-12-21 CVE-2018-18331 Incorrect Permission Assignment for Critical Resource vulnerability in Trendmicro Officescan XG
A Trend Micro OfficeScan XG weak file permissions vulnerability on a particular folder for a particular group may allow an attacker to alter the files, which could lead to other exploits on vulnerable installations.
network
low complexity
trendmicro CWE-732
7.5
2018-10-23 CVE-2018-18329 NULL Pointer Dereference vulnerability in Trendmicro products
A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations.
local
low complexity
trendmicro CWE-476
7.8
2018-10-23 CVE-2018-18328 NULL Pointer Dereference vulnerability in Trendmicro products
A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations.
local
low complexity
trendmicro CWE-476
7.8
2018-10-23 CVE-2018-18327 NULL Pointer Dereference vulnerability in Trendmicro products
A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations.
local
low complexity
trendmicro CWE-476
7.8
2018-10-23 CVE-2018-15367 NULL Pointer Dereference vulnerability in Trendmicro products
A ctl_set KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations.
local
low complexity
trendmicro CWE-476
7.8
2018-10-23 CVE-2018-15366 Use After Free vulnerability in Trendmicro products
A UrlfWTPPagePtr KERedirect Use-After-Free Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations.
local
low complexity
trendmicro CWE-416
7.8
2018-08-30 CVE-2018-15363 Out-of-bounds Read vulnerability in Trendmicro products
An Out-of-Bounds Read Privilege Escalation vulnerability in Trend Micro Security 2018 (Consumer) products could allow a local attacker to escalate privileges on vulnerable installations.
local
low complexity
trendmicro CWE-125
7.8
2018-08-30 CVE-2018-10514 Improper Privilege Management vulnerability in Trendmicro products
A Missing Impersonation Privilege Escalation vulnerability in Trend Micro Security 2018 (Consumer) products could allow a local attacker to escalate privileges on vulnerable installations.
local
low complexity
trendmicro CWE-269
7.8