Vulnerability Description
A local privilege escalation vulnerability exists in Trend Micro Security 2019 (v15.0) in which, if exploited, would allow an attacker to manipulate a specific product feature to load a malicious service.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Trendmicro | Antivirus \+ Security 2019 | 15.0 |
| Trendmicro | Internet Security 2019 | 15.0 |
| Trendmicro | Maximum Security 2019 | 15.0 |
| Trendmicro | Premium Security 2019 | 15.0 |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/154200/Trend-Maximum-Security-2019-UnquotedThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2019/Aug/26Mailing ListThird Party Advisory
- https://esupport.trendmicro.com/en-us/home/pages/technical-support/1123420.aspxVendor Advisory
- https://medium.com/sidechannel-br/vulnerabilidade-no-trend-micro-maximum-securitThird Party Advisory
- http://packetstormsecurity.com/files/154200/Trend-Maximum-Security-2019-UnquotedThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2019/Aug/26Mailing ListThird Party Advisory
- https://esupport.trendmicro.com/en-us/home/pages/technical-support/1123420.aspxVendor Advisory
- https://medium.com/sidechannel-br/vulnerabilidade-no-trend-micro-maximum-securitThird Party Advisory
FAQ
What is CVE-2019-14685?
CVE-2019-14685 is a vulnerability with a CVSS score of 7.8 (HIGH). A local privilege escalation vulnerability exists in Trend Micro Security 2019 (v15.0) in which, if exploited, would allow an attacker to manipulate a specific product feature to load a malicious serv...
How severe is CVE-2019-14685?
CVE-2019-14685 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-14685?
Check the references section above for vendor advisories and patch information. Affected products include: Trendmicro Antivirus \+ Security 2019, Trendmicro Internet Security 2019, Trendmicro Maximum Security 2019, Trendmicro Premium Security 2019, Microsoft Windows.