CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-24671

A link following privilege escalation vulnerability in Trend Micro Antivirus for Max 11.0.2150 and below could allow a local attacker to modify a file during the update process and escalate their privileges. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 32.9%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

Products affected by CVE-2022-24671

Trendmicro » Antivirus » Version: N/A

cpe:2.3:a:trendmicro:antivirus:-
Trendmicro » Antivirus » Version: 10.0

cpe:2.3:a:trendmicro:antivirus:10.0
Trendmicro » Antivirus » Version: 10.5

cpe:2.3:a:trendmicro:antivirus:10.5
Trendmicro » Antivirus » Version: 10.5.2088

cpe:2.3:a:trendmicro:antivirus:10.5.2088
Trendmicro » Antivirus » Version: 11.0

cpe:2.3:a:trendmicro:antivirus:11.0
Trendmicro » Antivirus » Version: 11.0.2062

cpe:2.3:a:trendmicro:antivirus:11.0.2062
Trendmicro » Antivirus » Version: 11.0.2150

cpe:2.3:a:trendmicro:antivirus:11.0.2150
Trendmicro » Antivirus » Version: 9.0

cpe:2.3:a:trendmicro:antivirus:9.0
Trendmicro » Antivirus » Version: 9.0.1379

cpe:2.3:a:trendmicro:antivirus:9.0.1379

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-24671

Products

Pricing

Contact Us