All the vulnerabilites related to Trend Micro, Inc. - Trend Micro Security (Consumer) uiAirSupport
cve-2024-23940
Vulnerability from cvelistv5
Published
2024-01-29 18:22
Modified
2024-08-01 23:13
Severity ?
EPSS score ?
Summary
Trend Micro uiAirSupport, included in the Trend Micro Security 2023 family of consumer products, version 6.0.2092 and below is vulnerable to a DLL hijacking/proxying vulnerability, which if exploited could allow an attacker to impersonate and modify a library to execute code on the system and ultimately escalate privileges on an affected system.
References
Impacted products
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-01T23:13:08.534Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_transferred" ], "url": "https://helpcenter.trendmicro.com/en-us/article/tmka-12134" }, { "tags": [ "x_transferred" ], "url": "https://helpcenter.trendmicro.com/ja-jp/article/tmka-12132" }, { "tags": [ "x_transferred" ], "url": "https://medium.com/@s1kr10s/av-when-a-friend-becomes-an-enemy-55f41aba42b1" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Trend Micro Security (Consumer) uiAirSupport", "vendor": "Trend Micro, Inc.", "versions": [ { "lessThan": "6.0.2093", "status": "affected", "version": "2023 (6.0)", "versionType": "semver" } ] } ], "descriptions": [ { "lang": "en", "value": "Trend Micro uiAirSupport, included in the Trend Micro Security 2023 family of consumer products, version 6.0.2092 and below is vulnerable to a DLL hijacking/proxying vulnerability, which if exploited could allow an attacker to impersonate and modify a library to execute code on the system and ultimately escalate privileges on an affected system." } ], "providerMetadata": { "dateUpdated": "2024-01-29T18:22:34.819Z", "orgId": "7f7bd7df-cffe-4fdb-ab6d-859363b89272", "shortName": "trendmicro" }, "references": [ { "url": "https://helpcenter.trendmicro.com/en-us/article/tmka-12134" }, { "url": "https://helpcenter.trendmicro.com/ja-jp/article/tmka-12132" }, { "url": "https://medium.com/@s1kr10s/av-when-a-friend-becomes-an-enemy-55f41aba42b1" } ] } }, "cveMetadata": { "assignerOrgId": "7f7bd7df-cffe-4fdb-ab6d-859363b89272", "assignerShortName": "trendmicro", "cveId": "CVE-2024-23940", "datePublished": "2024-01-29T18:22:34.819Z", "dateReserved": "2024-01-24T01:09:06.034Z", "dateUpdated": "2024-08-01T23:13:08.534Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }