Published: 18/01/2020 Updated: 21/07/2021

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

A Persistent Arbitrary Code Execution vulnerability exists in the Trend Micro Security 2020 (v160 and 2019 (v15) consumer familiy of products which could potentially allow an attacker the ability to create a malicious program to escalate privileges and attain persistence on a vulnerable system.

Vulnerable Product	Search on Vulmon	Subscribe to Product
trendmicro antivirus_\\+_security_2019 15.0
trendmicro antivirus_\\+_security_2020 16.0
trendmicro internet_security_2019 15.0
trendmicro internet_security_2020 16.0
trendmicro maximum_security_2019 15.0
trendmicro maximum_security_2020 16.0
trendmicro premium_security_2019 15.0
trendmicro premium_security_2020 16.0

Trend Micro Security can potentially allow an attacker to use a malicious program to escalate privileges to SYSTEM integrity and obtain persistence on a vulnerable system ...

CWE-428 http://hyp3rlinx.altervista.org/advisories/TREND-MICRO-SECURITY-CONSUMER-PERSISTENT-ARBITRARY-CODE-EXECUTION.txt https://esupport.trendmicro.com/en-us/home/pages/technical-support/1124099.aspx https://seclists.org/bugtraq/2020/Jan/28 https://nvd.nist.gov https://packetstormsecurity.com/files/155993/Trend-Micro-Security-Consumer-Arbitrary-Code-Execution.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-20357

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect