Vulnerability Description
A link following denial-of-service (DoS) vulnerability in the Trend Micro Security (Consumer) 2021 familiy of products could allow an attacker to abuse the PC Health Checkup feature of the product to create symlinks that would allow modification of files which could lead to a denial-of-service.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Trendmicro | Antivirus\+ Security 2021 | <= 17.0 |
| Trendmicro | Internet Security 2021 | <= 17.0 |
| Trendmicro | Maximum Security 2021 | <= 17.0 |
| Trendmicro | Premium Security 2021 | <= 17.0 |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- https://helpcenter.trendmicro.com/en-us/article/tmka-10867Vendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-21-1536/Third Party AdvisoryVDB Entry
- https://helpcenter.trendmicro.com/en-us/article/tmka-10867Vendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-21-1536/Third Party AdvisoryVDB Entry
FAQ
What is CVE-2021-44023?
CVE-2021-44023 is a vulnerability with a CVSS score of 7.1 (HIGH). A link following denial-of-service (DoS) vulnerability in the Trend Micro Security (Consumer) 2021 familiy of products could allow an attacker to abuse the PC Health Checkup feature of the product to ...
How severe is CVE-2021-44023?
CVE-2021-44023 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-44023?
Check the references section above for vendor advisories and patch information. Affected products include: Trendmicro Antivirus\+ Security 2021, Trendmicro Internet Security 2021, Trendmicro Maximum Security 2021, Trendmicro Premium Security 2021, Microsoft Windows.