CVE-2019-14686

HIGH

Trend Micro Security <2019 - DLL Hijacking

Title source: llm

Description

A DLL hijacking vulnerability exists in the Trend Micro Security's 2019 consumer family of products (v15) Folder Shield component and the standalone Trend Micro Ransom Buster (1.0) tool in which, if exploited, would allow an attacker to load a malicious DLL, leading to elevated privileges.

References (1)

[Vendor Advisory] https://esupport.trendmicro.com/en-us/home/pages/technical-support/1123421.aspx

Scores

CVSS v3 7.8

EPSS 0.0030

EPSS Percentile 53.2%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE

CWE-427

Status published

Affected Products (5)

trendmicro/antivirus_\+_security_2019

trendmicro/internet_security_2019

trendmicro/maximum_security_2019

trendmicro/premium_security_2019

trendmicro/ransom_buster

Timeline

Published Aug 21, 2019

Tracked Since Feb 18, 2026