CVE-2019-15627
First published: Thu Oct 17 2019(Updated: )
Versions 10.0, 11.0 and 12.0 of the Trend Micro Deep Security Agent are vulnerable to an arbitrary file delete attack, which may lead to availability impact. Local OS access is required. Please note that only Windows agents are affected.
Credit: security@trendmicro.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Trendmicro Deep Security | =10.0 | |
| Trendmicro Deep Security | =11.0 | |
| Trendmicro Deep Security | =12.0 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this security issue?
The vulnerability ID is CVE-2019-15627.
Which versions of the Trend Micro Deep Security Agent are affected by this vulnerability?
Versions 10.0, 11.0, and 12.0 of the Trend Micro Deep Security Agent are affected.
What is the impact of this vulnerability?
This vulnerability may lead to availability impact.
Is local OS access required for exploiting this vulnerability?
Yes, local OS access is required to exploit this vulnerability.
Are only Windows agents affected by this vulnerability?
Yes, only Windows agents are affected by this vulnerability.
How severe is this vulnerability?
This vulnerability has a severity rating of 7.1 (high).
How can I fix this vulnerability?
Refer to the provided references for guidance on fixing this vulnerability.
- collector/nvd-index
- vendor/trendmicro
- canonical/trendmicro deep security
- version/trendmicro deep security/10.0
- version/trendmicro deep security/11.0
- version/trendmicro deep security/12.0
- vendor/microsoft
- canonical/microsoft windows