4 matches found
CVE-2019-19694
The CVE affects Trend Micro Security 2019 for Windows (15.0.0.1163 and below). A DoS can be triggered by a malicious actor who manipulates a key file at a specific moment during system startup, potentially disabling the product’s malware protection functions or the entire product. Marketed as a l...
CVE-2020-15604
CVE-2020-15604 affects Trend Micro Security 2019 (v15) products in the Active Update path. The issue is an incomplete SSL server certificate validation vulnerability (CWE-295) and, separately, that update files are not properly verified (CWE-494). Exploitation could occur by tricking affected cli...
CVE-2020-24560
The connected Red Hat, NVD, JVN and related records identify CVE-2020-24560 as an incomplete SSL server certificate validation vulnerability in Trend Micro Security 2019 (v15) consumer products. The issue arises in the update channel: an attacker could leverage improper server certificate verific...
CVE-2020-8607
CVE-2020-8607 affects multiple Trend Micro products that use a specific rootkit protection driver. The vulnerability arises from input validation that lets a user-mode attacker with administrator privileges abuse the driver to modify a kernel address, which can crash the system or potentially ena...