Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-28929

Trend Micro Security 2021, 2022, and 2023 (Consumer) are vulnerable to a DLL Hijacking vulnerability which could allow an attacker to use a specific executable file as an execution and/or persistence mechanism which could execute a malicious program each time the executable file is started.

Published

2023-06-26T22:15:09.733

Last Modified

2024-11-21T07:56:14.880

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

Weaknesses

Type: Primary
CWE-427

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	trendmicro	antivirus\+_security_2021	≤ 17.0.1412	Yes
Application	trendmicro	internet_security_2021	≤ 17.0.1412	Yes
Application	trendmicro	maximum_security_2021	≤ 17.0.1412	Yes
Application	trendmicro	premium_security_2021	≤ 17.0.1412	Yes
Operating System	microsoft	windows	-	No
Application	trendmicro	antivirus\+_security_2022	≤ 17.7.1476	Yes
Application	trendmicro	internet_security_2022	≤ 17.7.1476	Yes
Application	trendmicro	maximum_security_2022	≤ 17.7.1476	Yes
Application	trendmicro	premium_security_2022	≤ 17.7.1476	Yes
Operating System	microsoft	windows	-	No
Application	trendmicro	antivirus\+_security_2023	≤ 17.7.1476	Yes
Application	trendmicro	internet_security_2023	≤ 17.7.1476	Yes
Application	trendmicro	maximum_security_2023	≤ 17.7.1476	Yes
Application	trendmicro	premium_security_2023	≤ 17.7.1476	Yes
Operating System	microsoft	windows	-	No

References

https://helpcenter.trendmicro.com/en-us/article/tmka-19062 Vendor Advisory ([email protected])
https://helpcenter.trendmicro.com/en-us/article/tmka-19062 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)