CVE-2021-25227
LOWTrend Micro Antivirus for Mac 2021 - Memory Corruption
Title source: llmDescription
Trend Micro Antivirus for Mac 2021 (Consumer) is vulnerable to a memory exhaustion vulnerability that could lead to disabling all the scanning functionality within the application. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability - i.e. the attacker must already have access to the target system (either legitimately or via another exploit).
References (2)
Core 2
Core References
Patch, Vendor Advisory x_refsource_misc
https://helpcenter.trendmicro.com/en-us/article/TMKA-10191
Third Party Advisory, VDB Entry x_refsource_misc
https://www.zerodayinitiative.com/advisories/ZDI-21-102/
Scores
CVSS v3
3.3
EPSS
0.0009
EPSS Percentile
25.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Details
CWE
CWE-400
Status
published
Products (4)
trendmicro/antivirus
9.0
trendmicro/antivirus
10.0
trendmicro/antivirus
10.5
trendmicro/antivirus
11.0
Published
Feb 04, 2021
Tracked Since
Feb 18, 2026