4 matches found
CVE-2024-48903
CVE-2024-48903 affects Trend Micro Deep Security Agent 20. An improper access-control vulnerability could let a local, non-admin attacker escalate to higher privileges after obtaining the ability to execute low-privileged code. Documents consistently describe a local privilege-escalation impact, ...
CVE-2025-30640
CVE-2025-30640 is a confirmed local privilege escalation affecting Trend Micro Deep Security 20.0 agents, attributed to a link-following flaw in the Anti-Malware/Deep Security Platform. The root cause involves abusing symbolic links to escalate privileges, with an attacker needing to run low-priv...
CVE-2025-30642
CVE-2025-30642 concerns a local DoS in Trend Micro Deep Security Agent 20.0 caused by a link-following issue in the Damage Cleanup Engine. An attacker who can run code with low privileges on the target can trigger a denial of service by creating a junction that leads to file deletion, according t...
CVE-2025-30641
CVE-2025-30641 is a local privilege-escalation in Trend Micro Deep Security Deep Security Agent’s Anti-Malware component (20.0). The flaw arises from a link-following issue that can be exploited by a local attacker who already has low-privilege code execution to escalate privileges, potentially v...