Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-19697

An arbitrary code execution vulnerability exists in the Trend Micro Security 2019 (v15) consumer family of products which could allow an attacker to gain elevated privileges and tamper with protected services by disabling or otherwise preventing them to start. An attacker must already have administrator privileges on the target machine in order to exploit the vulnerability.

Published

2020-01-18T00:15:12.187

Last Modified

2024-11-21T04:35:12.830

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.7 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

  • Access Vector: LOCAL
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: COMPLETE
  • Integrity Impact: COMPLETE
  • Availability Impact: COMPLETE
Exploitability Score

3.9

Impact Score

10.0

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application trendmicro antivirus_\+_security_2019 15.0 Yes
Application trendmicro internet_security_2019 15.0 Yes
Application trendmicro maximum_security_2019 15.0 Yes
Application trendmicro premium_security_2019 15.0 Yes
Operating System microsoft windows - No
References