First published: Tue Nov 30 2021(Updated: )
This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Antivirus for Mac. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within com.trendmicro.AFM.HelperTool. The issue results from improper access control. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of root.
Credit: security@trendmicro.com
Affected Software | Affected Version | How to fix |
---|---|---|
Trendmicro Antivirus | >=11.0<11.0.2163 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2021-43771.
The title of the vulnerability is Trend Micro Antivirus for Mac Improper Access Control Privilege Escalation Vulnerability.
Trend Micro Antivirus for Mac versions 11.0.0 to 11.0.2162 are affected by this vulnerability.
The severity of CVE-2021-43771 is high with a CVSS score of 7.8.
An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.