CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-23940

Trend Micro uiAirSupport, included in the Trend Micro Security 2023 family of consumer products, version 6.0.2092 and below is vulnerable to a DLL hijacking/proxying vulnerability, which if exploited could allow an attacker to impersonate and modify a library to execute code on the system and ultimately escalate privileges on an affected system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 13.6%

CVSS Severity

CVSS v3 Score 7.8

References

Products affected by CVE-2024-23940

Trendmicro » Air Support » Version: Any

cpe:2.3:a:trendmicro:air_support:*
Trendmicro » Antivirus + Security » Version: Any

cpe:2.3:a:trendmicro:antivirus_+_security:*
Trendmicro » Internet Security » Version: Any

cpe:2.3:a:trendmicro:internet_security:*
Trendmicro » Maximum Security » Version: Any

cpe:2.3:a:trendmicro:maximum_security:*
Trendmicro » Premium Security » Version: Any

cpe:2.3:a:trendmicro:premium_security:*
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-23940

Products

Pricing

Contact Us