First published: Wed Jan 18 2023(Updated: )
A vulnerability exists in Trend Micro Maximum Security 2022 (17.7) wherein a low-privileged user can write a known malicious executable to a specific location and in the process of removal and restoral an attacker could replace an original folder with a mount point to an arbitrary location, allowing a escalation of privileges on an affected system.
Credit: security@trendmicro.com
Affected Software | Affected Version | How to fix |
---|---|---|
Trend Micro Maximum Security | ||
Trendmicro Maximum Security 2022 | =17.7 | |
Microsoft Windows |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2022-48191.
The title of this vulnerability is Trend Micro Maximum Security Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability.
The severity rating of CVE-2022-48191 is 7.8 (high).
This vulnerability can be exploited by local attackers who have the ability to execute low-privileged code on the target system.
No, Microsoft Windows is not vulnerable to this specific vulnerability.