CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-14684

A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited, would allow an attacker to load an arbitrary unsigned DLL into the signed service's process. This process is very similar, yet not identical to CVE-2019-14687.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.5%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 9.3

References

https://esupport.trendmicro.com/en-us/home/pages/technical-support/1123396.aspx
https://safebreach.com/Post/Trend-Micro-Password-Manager-Privilege-Escalation-to-SYSTEM
https://esupport.trendmicro.com/en-us/home/pages/technical-support/1123396.aspx
https://safebreach.com/Post/Trend-Micro-Password-Manager-Privilege-Escalation-to-SYSTEM

Products affected by CVE-2019-14684

Trendmicro » Password Manager » Version: 5.0

cpe:2.3:a:trendmicro:password_manager:5.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-14684

Products

Pricing

Contact Us