Описание
A path traversal exists in a specific dll of Trend Micro Mobile Security (Enterprise) 9.8 SP5 which could allow an authenticated remote attacker to delete arbitrary files.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Ссылки
- PatchVendor Advisory
- ExploitThird Party Advisory
- PatchVendor Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:trendmicro:mobile_security:9.8:sp5:*:*:enterprise:windows:*:*
EPSS
Процентиль: 79%
0.01213
Низкий
8.1 High
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 8.1
github
больше 2 лет назад
A path traversal exists in a specific dll of Trend Micro Mobile Security (Enterprise) 9.8 SP5 which could allow an authenticated remote attacker to delete arbitrary files. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
EPSS
Процентиль: 79%
0.01213
Низкий
8.1 High
CVSS3
Дефекты
CWE-22