CVE-2022-40980
CRITICALTrend Micro Mobile Security for Enterprise <9.8 SP5 - File Deletion
Title source: llmDescription
A potential unathenticated file deletion vulnerabilty on Trend Micro Mobile Security for Enterprise 9.8 SP5 could allow an attacker with access to the Management Server to delete files. This issue was resolved in 9.8 SP5 Critical Patch 2.
References (1)
Core 1
Core References
Release Notes, Vendor Advisory x_refsource_misc
https://files.trendmicro.com/documentation/readme/tmms_sp5_cp2/tmms-ee_9.8_sp5_patch2_readme_server.txt
Scores
CVSS v3
9.1
EPSS
0.0058
EPSS Percentile
69.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Details
Status
published
Products (1)
trendmicro/mobile_security
9.8 sp5
Published
Sep 19, 2022
Tracked Since
Feb 18, 2026