cvelistv5 - CVE-2018-6234

CVE-2018-6234 (GCVE-0-2018-6234)

Vulnerability from cvelistv5 – Published: 2018-05-25 15:00 – Updated: 2024-08-05 06:01

Summary

Severity ?

No CVSS data available.

CWE

Out-of-Bounds Read Information Disclosure

Assigner

trendmicro

References

URL

Tags

	https://www.zerodayinitiative.com/advisories/ZDI-…	x_refsource_MISC
	https://esupport.trendmicro.com/en-us/home/pages/…	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Trend Micro	Trend Micro Maximum Security	Affected: 2018

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T06:01:47.979Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-268/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Trend Micro Maximum Security",
          "vendor": "Trend Micro",
          "versions": [
            {
              "status": "affected",
              "version": "2018"
            }
          ]
        }
      ],
      "datePublic": "2018-04-06T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Out-of-Bounds Read Information Disclosure",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-05-25T14:57:01",
        "orgId": "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
        "shortName": "trendmicro"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-268/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@trendmicro.com",
          "ID": "CVE-2018-6234",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Trend Micro Maximum Security",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "2018"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Trend Micro"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Out-of-Bounds Read Information Disclosure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-268/",
              "refsource": "MISC",
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-268/"
            },
            {
              "name": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx",
              "refsource": "CONFIRM",
              "url": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7f7bd7df-cffe-4fdb-ab6d-859363b89272",
    "assignerShortName": "trendmicro",
    "cveId": "CVE-2018-6234",
    "datePublished": "2018-05-25T15:00:00",
    "dateReserved": "2018-01-25T00:00:00",
    "dateUpdated": "2024-08-05T06:01:47.979Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:trendmicro:antivirus\\\\+:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"12.0\", \"matchCriteriaId\": \"C1F0D5FC-CE5A-42BB-A037-BCE54D5E9775\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:trendmicro:internet_security:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"12.0\", \"matchCriteriaId\": \"9ABDF487-D7B5-4A1C-9097-E4CD0B2EE31C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:trendmicro:maximum_security:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"12.0\", \"matchCriteriaId\": \"A362B140-67F1-439E-B901-C525D2560522\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:trendmicro:premium_security:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"12.0\", \"matchCriteriaId\": \"171B3754-A310-409E-9CB3-423D62BC99EF\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A2572D17-1DE6-457B-99CC-64AFD54487EA\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\"}, {\"lang\": \"es\", \"value\": \"Una vulnerabilidad de divulgaci\\u00f3n de informaci\\u00f3n por lectura fuera de l\\u00edmites en Trend Micro Maximum Security (Consumer) 2018 podr\\u00eda permitir que un atacante local revele informaci\\u00f3n sensible en instalaciones vulnerables debido a un error en el procesamiento de llamadas IOCTL 0x222814 por parte del controlador tmnciesc.sys. En primer lugar, un atacante debe obtener la capacidad de ejecutar c\\u00f3digo de bajos privilegios en el sistema objetivo para explotar esta vulnerabilidad.\"}]",
      "id": "CVE-2018-6234",
      "lastModified": "2024-11-21T04:10:21.193",
      "metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 2.1, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.9, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2018-05-25T15:29:00.397",
      "references": "[{\"url\": \"https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx\", \"source\": \"security@trendmicro.com\", \"tags\": [\"Mitigation\", \"Vendor Advisory\"]}, {\"url\": \"https://www.zerodayinitiative.com/advisories/ZDI-18-268/\", \"source\": \"security@trendmicro.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mitigation\", \"Vendor Advisory\"]}, {\"url\": \"https://www.zerodayinitiative.com/advisories/ZDI-18-268/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}]",
      "sourceIdentifier": "security@trendmicro.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-125\"}, {\"lang\": \"en\", \"value\": \"CWE-200\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2018-6234\",\"sourceIdentifier\":\"security@trendmicro.com\",\"published\":\"2018-05-25T15:29:00.397\",\"lastModified\":\"2024-11-21T04:10:21.193\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n por lectura fuera de l\u00edmites en Trend Micro Maximum Security (Consumer) 2018 podr\u00eda permitir que un atacante local revele informaci\u00f3n sensible en instalaciones vulnerables debido a un error en el procesamiento de llamadas IOCTL 0x222814 por parte del controlador tmnciesc.sys. En primer lugar, un atacante debe obtener la capacidad de ejecutar c\u00f3digo de bajos privilegios en el sistema objetivo para explotar esta vulnerabilidad.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"},{\"lang\":\"en\",\"value\":\"CWE-200\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:trendmicro:antivirus\\\\+:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"12.0\",\"matchCriteriaId\":\"C1F0D5FC-CE5A-42BB-A037-BCE54D5E9775\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:trendmicro:internet_security:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"12.0\",\"matchCriteriaId\":\"9ABDF487-D7B5-4A1C-9097-E4CD0B2EE31C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:trendmicro:maximum_security:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"12.0\",\"matchCriteriaId\":\"A362B140-67F1-439E-B901-C525D2560522\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:trendmicro:premium_security:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"12.0\",\"matchCriteriaId\":\"171B3754-A310-409E-9CB3-423D62BC99EF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2572D17-1DE6-457B-99CC-64AFD54487EA\"}]}]}],\"references\":[{\"url\":\"https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx\",\"source\":\"security@trendmicro.com\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://www.zerodayinitiative.com/advisories/ZDI-18-268/\",\"source\":\"security@trendmicro.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://www.zerodayinitiative.com/advisories/ZDI-18-268/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]}]}}"
  }
}

GHSA-P596-X7GF-XQ3C

Vulnerability from github – Published: 2022-05-14 03:15 – Updated: 2022-05-14 03:15

Details

Severity ?

5.5 (Medium)


                  
                    CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2018-6234"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-200"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2018-05-25T15:29:00Z",
    "severity": "MODERATE"
  },
  "details": "An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.",
  "id": "GHSA-p596-x7gf-xq3c",
  "modified": "2022-05-14T03:15:53Z",
  "published": "2022-05-14T03:15:53Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-6234"
    },
    {
      "type": "WEB",
      "url": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx"
    },
    {
      "type": "WEB",
      "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-268"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

FKIE_CVE-2018-6234

Vulnerability from fkie_nvd - Published: 2018-05-25 15:29 - Updated: 2024-11-21 04:10

Severity ?

5.5 (Medium) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Summary

References

URL	Tags
security@trendmicro.com	https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx	Mitigation, Vendor Advisory
security@trendmicro.com	https://www.zerodayinitiative.com/advisories/ZDI-18-268/	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx	Mitigation, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.zerodayinitiative.com/advisories/ZDI-18-268/	Third Party Advisory, VDB Entry

Impacted products

Vendor	Product	Version
trendmicro	antivirus\+	*
trendmicro	internet_security	*
trendmicro	maximum_security	*
trendmicro	premium_security	*
microsoft	windows	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:trendmicro:antivirus\\+:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C1F0D5FC-CE5A-42BB-A037-BCE54D5E9775",
              "versionEndIncluding": "12.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trendmicro:internet_security:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9ABDF487-D7B5-4A1C-9097-E4CD0B2EE31C",
              "versionEndIncluding": "12.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trendmicro:maximum_security:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A362B140-67F1-439E-B901-C525D2560522",
              "versionEndIncluding": "12.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trendmicro:premium_security:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "171B3754-A310-409E-9CB3-423D62BC99EF",
              "versionEndIncluding": "12.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n por lectura fuera de l\u00edmites en Trend Micro Maximum Security (Consumer) 2018 podr\u00eda permitir que un atacante local revele informaci\u00f3n sensible en instalaciones vulnerables debido a un error en el procesamiento de llamadas IOCTL 0x222814 por parte del controlador tmnciesc.sys. En primer lugar, un atacante debe obtener la capacidad de ejecutar c\u00f3digo de bajos privilegios en el sistema objetivo para explotar esta vulnerabilidad."
    }
  ],
  "id": "CVE-2018-6234",
  "lastModified": "2024-11-21T04:10:21.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 2.1,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2018-05-25T15:29:00.397",
  "references": [
    {
      "source": "security@trendmicro.com",
      "tags": [
        "Mitigation",
        "Vendor Advisory"
      ],
      "url": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx"
    },
    {
      "source": "security@trendmicro.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-268/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mitigation",
        "Vendor Advisory"
      ],
      "url": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-268/"
    }
  ],
  "sourceIdentifier": "security@trendmicro.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-125"
        },
        {
          "lang": "en",
          "value": "CWE-200"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

VAR-201805-0899

Vulnerability from variot - Updated: 2023-12-18 12:18

An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges to kernel. Failed exploit attempts will likely cause a denial-of-service condition. The following products and versions are vulnerable: Premium Security 12.0 and prior Maximum Security 12.0 and prior Internet Security 12.0 and prior Antivirus + Security 12.0 and prior

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201805-0899",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "maximum security",
        "scope": null,
        "trust": 1.5,
        "vendor": "trend micro",
        "version": null
      },
      {
        "model": "premium security",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "trendmicro",
        "version": "12.0"
      },
      {
        "model": "internet security",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "trendmicro",
        "version": "12.0"
      },
      {
        "model": "maximum security",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "trendmicro",
        "version": "12.0"
      },
      {
        "model": "antivirus\\+",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "trendmicro",
        "version": "12.0"
      },
      {
        "model": "antivirus + security",
        "scope": null,
        "trust": 0.8,
        "vendor": "trend micro",
        "version": null
      },
      {
        "model": "internet security",
        "scope": null,
        "trust": 0.8,
        "vendor": "trend micro",
        "version": null
      },
      {
        "model": "premium security",
        "scope": null,
        "trust": 0.8,
        "vendor": "trend micro",
        "version": null
      },
      {
        "model": "antivirus\\+",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "trendmicro",
        "version": "12.0"
      },
      {
        "model": "internet security",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "trendmicro",
        "version": "12.0"
      },
      {
        "model": "premium security",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "trendmicro",
        "version": "12.0"
      },
      {
        "model": "maximum security",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "trendmicro",
        "version": "12.0"
      },
      {
        "model": "premium security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "10.0.1265"
      },
      {
        "model": "premium security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "8.0.2063"
      },
      {
        "model": "premium security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "8.0"
      },
      {
        "model": "premium security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "12.0"
      },
      {
        "model": "premium security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "10.0.1186"
      },
      {
        "model": "premium security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "10.0"
      },
      {
        "model": "maximum security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "10.0.1265"
      },
      {
        "model": "maximum security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "8.0.2063"
      },
      {
        "model": "maximum security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "8.0"
      },
      {
        "model": "maximum security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "12.0"
      },
      {
        "model": "maximum security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "11.0"
      },
      {
        "model": "maximum security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "10.0.1186"
      },
      {
        "model": "maximum security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "10.0"
      },
      {
        "model": "internet security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "10.0.1265"
      },
      {
        "model": "internet security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "12.0"
      },
      {
        "model": "internet security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "11.0"
      },
      {
        "model": "internet security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "10.0.1186"
      },
      {
        "model": "internet security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "10.0"
      },
      {
        "model": "antivirus+ security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "12.0"
      },
      {
        "model": "antivirus+ security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "11.0"
      },
      {
        "model": "antivirus security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "+10.0.1265"
      },
      {
        "model": "antivirus security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "+8.0.2063"
      },
      {
        "model": "antivirus security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "+8.0"
      },
      {
        "model": "antivirus security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "+10.0.1186"
      },
      {
        "model": "antivirus security",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "+10.0"
      },
      {
        "model": "premium security",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "12.0.1226"
      },
      {
        "model": "maximum security",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "12.0.1226"
      },
      {
        "model": "internet security",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "12.0.1226"
      },
      {
        "model": "antivirus security",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "trend micro",
        "version": "+12.0.1226"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-268"
      },
      {
        "db": "BID",
        "id": "104298"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-005431"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-6234"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201805-877"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:trendmicro:premium_security:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "12.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:trendmicro:internet_security:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "12.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:trendmicro:antivirus\\+:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "12.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:trendmicro:maximum_security:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "12.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2018-6234"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Anonymous",
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-268"
      }
    ],
    "trust": 0.7
  },
  "cve": "CVE-2018-6234",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "NONE",
            "baseScore": 2.1,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 3.9,
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "LOW",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Local",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "None",
            "baseScore": 2.1,
            "confidentialityImpact": "Partial",
            "exploitabilityScore": null,
            "id": "CVE-2018-6234",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "Low",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "ZDI",
            "availabilityImpact": "PARTIAL",
            "baseScore": 4.6,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 3.9,
            "id": "CVE-2018-6234",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "MEDIUM",
            "trust": 0.7,
            "userInteractionRequired": null,
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "author": "NVD",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 1.8,
            "impactScore": 3.6,
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Local",
            "author": "NVD",
            "availabilityImpact": "None",
            "baseScore": 5.5,
            "baseSeverity": "Medium",
            "confidentialityImpact": "High",
            "exploitabilityScore": null,
            "id": "CVE-2018-6234",
            "impactScore": null,
            "integrityImpact": "None",
            "privilegesRequired": "Low",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "None",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2018-6234",
            "trust": 1.8,
            "value": "MEDIUM"
          },
          {
            "author": "ZDI",
            "id": "CVE-2018-6234",
            "trust": 0.7,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201805-877",
            "trust": 0.6,
            "value": "LOW"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-268"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-005431"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-6234"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201805-877"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges to kernel. Failed exploit attempts will likely cause a denial-of-service condition. \nThe following products and versions are vulnerable:\nPremium Security 12.0 and prior\nMaximum Security 12.0 and prior\nInternet Security 12.0 and prior\nAntivirus + Security 12.0 and prior",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2018-6234"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-005431"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-268"
      },
      {
        "db": "BID",
        "id": "104298"
      }
    ],
    "trust": 2.52
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2018-6234",
        "trust": 3.4
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-268",
        "trust": 2.6
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-005431",
        "trust": 0.8
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-5460",
        "trust": 0.7
      },
      {
        "db": "NSFOCUS",
        "id": "39401",
        "trust": 0.6
      },
      {
        "db": "NSFOCUS",
        "id": "39894",
        "trust": 0.6
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201805-877",
        "trust": 0.6
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-266",
        "trust": 0.3
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-410",
        "trust": 0.3
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-269",
        "trust": 0.3
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-267",
        "trust": 0.3
      },
      {
        "db": "BID",
        "id": "104298",
        "trust": 0.3
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-268"
      },
      {
        "db": "BID",
        "id": "104298"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-005431"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-6234"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201805-877"
      }
    ]
  },
  "id": "VAR-201805-0899",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VARIoT devices database",
        "id": null
      }
    ],
    "trust": 0.12407407
  },
  "last_update_date": "2023-12-18T12:18:50.833000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "1119591",
        "trust": 1.5,
        "url": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx"
      },
      {
        "title": "Multiple Trend Micro Product information disclosure vulnerability repair measures",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=83720"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-268"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-005431"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201805-877"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-125",
        "trust": 1.8
      },
      {
        "problemtype": "CWE-200",
        "trust": 1.8
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-005431"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-6234"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.6,
        "url": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx"
      },
      {
        "trust": 1.9,
        "url": "https://www.zerodayinitiative.com/advisories/zdi-18-268/"
      },
      {
        "trust": 0.8,
        "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-6234"
      },
      {
        "trust": 0.8,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-6234"
      },
      {
        "trust": 0.6,
        "url": "http://www.nsfocus.net/vulndb/39894"
      },
      {
        "trust": 0.6,
        "url": "http://www.nsfocus.net/vulndb/39401"
      },
      {
        "trust": 0.3,
        "url": "http://www.trend.com"
      },
      {
        "trust": 0.3,
        "url": "https://www.zerodayinitiative.com/advisories/zdi-18-266/"
      },
      {
        "trust": 0.3,
        "url": "https://www.zerodayinitiative.com/advisories/zdi-18-267/"
      },
      {
        "trust": 0.3,
        "url": "https://www.zerodayinitiative.com/advisories/zdi-18-269/"
      },
      {
        "trust": 0.3,
        "url": "https://www.zerodayinitiative.com/advisories/zdi-18-410/"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-268"
      },
      {
        "db": "BID",
        "id": "104298"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-005431"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-6234"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201805-877"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "ZDI",
        "id": "ZDI-18-268"
      },
      {
        "db": "BID",
        "id": "104298"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-005431"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-6234"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201805-877"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2018-04-06T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-268"
      },
      {
        "date": "2018-04-04T00:00:00",
        "db": "BID",
        "id": "104298"
      },
      {
        "date": "2018-07-17T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2018-005431"
      },
      {
        "date": "2018-05-25T15:29:00.397000",
        "db": "NVD",
        "id": "CVE-2018-6234"
      },
      {
        "date": "2018-05-25T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201805-877"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2018-04-06T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-268"
      },
      {
        "date": "2018-04-04T00:00:00",
        "db": "BID",
        "id": "104298"
      },
      {
        "date": "2018-07-17T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2018-005431"
      },
      {
        "date": "2018-06-28T16:05:42.857000",
        "db": "NVD",
        "id": "CVE-2018-6234"
      },
      {
        "date": "2018-08-01T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201805-877"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "local",
    "sources": [
      {
        "db": "BID",
        "id": "104298"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201805-877"
      }
    ],
    "trust": 0.9
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Trend Micro Maximum Security Vulnerable to out-of-bounds reading",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2018-005431"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "information disclosure",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201805-877"
      }
    ],
    "trust": 0.6
  }
}

GSD-2018-6234

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2018-6234

Aliases

CVE-2018-6234

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-6234",
    "description": "An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.",
    "id": "GSD-2018-6234"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-6234"
      ],
      "details": "An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.",
      "id": "GSD-2018-6234",
      "modified": "2023-12-13T01:22:35.376110Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@trendmicro.com",
        "ID": "CVE-2018-6234",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Trend Micro Maximum Security",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "2018"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Trend Micro"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Out-of-Bounds Read Information Disclosure"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-268/",
            "refsource": "MISC",
            "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-268/"
          },
          {
            "name": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx",
            "refsource": "CONFIRM",
            "url": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:trendmicro:premium_security:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "12.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:trendmicro:internet_security:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "12.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:trendmicro:antivirus\\+:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "12.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:trendmicro:maximum_security:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "12.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@trendmicro.com",
          "ID": "CVE-2018-6234"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-200"
                },
                {
                  "lang": "en",
                  "value": "CWE-125"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.zerodayinitiative.com/advisories/ZDI-18-268/",
              "refsource": "MISC",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-268/"
            },
            {
              "name": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx",
              "refsource": "CONFIRM",
              "tags": [
                "Mitigation",
                "Vendor Advisory"
              ],
              "url": "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 2.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "exploitabilityScore": 1.8,
          "impactScore": 3.6
        }
      },
      "lastModifiedDate": "2018-06-28T16:05Z",
      "publishedDate": "2018-05-25T15:29Z"
    }
  }
}

CNVD-2018-09711

Vulnerability from cnvd - Published: 2018-05-17

Title

Trend Micro Maximum Security tmnciesc越界读信息泄露漏洞

Description

Trend Micro Maximum Security是多设备病毒、恶意软件保护软件。 Trend Micro Maximum Security存在信息泄露漏洞，该漏洞源于tmnciesc.sys驱动程序处理IOCTL 0x222814中缺乏正确的用户数据验证，攻击者可在目标系统中执行低权限代码。

Severity

高

Patch Name

Trend Micro Maximum Security tmnciesc越界读信息泄露漏洞的补丁

Patch Description

Trend Micro Maximum Security是多设备病毒、恶意软件保护软件。 Trend Micro Maximum Security存在信息泄露漏洞，该漏洞源于tmnciesc.sys驱动程序处理IOCTL 0x222814中缺乏正确的用户数据验证，攻击者可在目标系统中执行低权限代码。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx

Reference

https://nvd.nist.gov/vuln/detail/CVE-2018-6234

Impacted products

Name
Trend Micro Maximum Security

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-6234",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6234"
    }
  },
  "description": "Trend Micro Maximum Security\u662f\u591a\u8bbe\u5907\u75c5\u6bd2\u3001\u6076\u610f\u8f6f\u4ef6\u4fdd\u62a4\u8f6f\u4ef6\u3002\r\n\r\nTrend Micro Maximum Security\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8etmnciesc.sys\u9a71\u52a8\u7a0b\u5e8f\u5904\u7406IOCTL 0x222814\u4e2d\u7f3a\u4e4f\u6b63\u786e\u7684\u7528\u6237\u6570\u636e\u9a8c\u8bc1\uff0c\u653b\u51fb\u8005\u53ef\u5728\u76ee\u6807\u7cfb\u7edf\u4e2d\u6267\u884c\u4f4e\u6743\u9650\u4ee3\u7801\u3002",
  "discovererName": "unknown",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\nhttps://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-09711",
  "openTime": "2018-05-17",
  "patchDescription": "Trend Micro Maximum Security\u662f\u591a\u8bbe\u5907\u75c5\u6bd2\u3001\u6076\u610f\u8f6f\u4ef6\u4fdd\u62a4\u8f6f\u4ef6\u3002\r\n\r\nTrend Micro Maximum Security\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8etmnciesc.sys\u9a71\u52a8\u7a0b\u5e8f\u5904\u7406IOCTL 0x222814\u4e2d\u7f3a\u4e4f\u6b63\u786e\u7684\u7528\u6237\u6570\u636e\u9a8c\u8bc1\uff0c\u653b\u51fb\u8005\u53ef\u5728\u76ee\u6807\u7cfb\u7edf\u4e2d\u6267\u884c\u4f4e\u6743\u9650\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Trend Micro Maximum Security tmnciesc\u8d8a\u754c\u8bfb\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Trend Micro Maximum Security"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2018-6234",
  "serverity": "\u9ad8",
  "submitTime": "2018-04-19",
  "title": "Trend Micro Maximum Security tmnciesc\u8d8a\u754c\u8bfb\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-6234 (GCVE-0-2018-6234)

GHSA-P596-X7GF-XQ3C

FKIE_CVE-2018-6234

VAR-201805-0899

GSD-2018-6234

CNVD-2018-09711

Tags

Sightings

Nomenclature