Description
The Trend Micro Security 2020 and 2021 families of consumer products are vulnerable to a code injection vulnerability which could allow an attacker to disable the program's password protection and disable protection. An attacker must already have administrator privileges on the machine to exploit this vulnerability.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://helpcenter.trendmicro.com/en-us/article/TMKA-10211
Scores
CVSS v3
7.2
EPSS
0.0086
EPSS Percentile
75.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-94
Status
published
Products (8)
trendmicro/antivirus\+_security_2020
16.0
trendmicro/antivirus\+_security_2021
17.0
trendmicro/internet_security_2020
16.0
trendmicro/internet_security_2021
17.0
trendmicro/maximum_security_2020
16.0
trendmicro/maximum_security_2021
17.0
trendmicro/premium_security_2020
16.0
trendmicro/premium_security_2021
17.0
Published
Feb 10, 2021
Tracked Since
Feb 18, 2026