Vulnerabilities > Trendmicro > Security

DATE CVE VULNERABILITY TITLE RISK
2022-09-19 CVE-2022-34893 Link Following vulnerability in Trendmicro Security 12.0
Trend Micro Security 2022 (consumer) has a link following vulnerability where an attacker with lower privileges could manipulate a mountpoint which could lead to escalation of privilege on an affected machine.
local
low complexity
trendmicro CWE-59
7.8
2022-09-19 CVE-2022-37347 Out-of-bounds Read vulnerability in Trendmicro Security 12.0
Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine.
local
low complexity
trendmicro CWE-125
5.5
2022-09-19 CVE-2022-37348 Out-of-bounds Read vulnerability in Trendmicro Security 12.0
Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine.
local
low complexity
trendmicro CWE-125
5.5
2022-07-30 CVE-2022-35234 Out-of-bounds Read vulnerability in Trendmicro Security 2021/2022
Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine.
local
low complexity
trendmicro CWE-125
7.1
2022-06-09 CVE-2022-30702 Out-of-bounds Read vulnerability in Trendmicro Security 2022
Trend Micro Security 2022 and 2021 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure vulnerability that could allow an attacker to disclose sensitive information on an affected machine.
local
low complexity
trendmicro CWE-125
5.5
2022-06-09 CVE-2022-30703 Unspecified vulnerability in Trendmicro Security 2021/2022
Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an exposed dangerous method vulnerability that could allow an attacker to obtain access to leaked kernel addresses and disclose sensitive information.
local
low complexity
trendmicro
7.8
2020-02-20 CVE-2019-14688 Uncontrolled Search Path Element vulnerability in Trendmicro products
Trend Micro has repackaged installers for several Trend Micro products that were found to utilize a version of an install package that had a DLL hijack vulnerability that could be exploited during a new product installation.
local
high complexity
trendmicro CWE-427
7.0
2018-02-16 CVE-2018-6218 Untrusted Search Path vulnerability in Trendmicro products
A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module (UMH) could allow an attacker to run arbitrary code on a vulnerable system.
local
high complexity
trendmicro CWE-426
7.0