[Japanese]

JVNDB-2021-005174

Multiple vulnerabilities in Trend Micro Security 2021 family (Consumer)

Overview

Trend Micro Incorporated has released security updates for Trend Micro Security 2021 family (Consumer).

Trend Micro Incorporated reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN.
CVSS Severity (What is CVSS?)

Affected Products


Trend Micro, Inc.
  • Antivirus + Security 2021 (v17) and earlier
  • Trend Micro Maximum Security 2021 (v17) and earlier
  • Trend Micro Premium Security 2021 (v17) and earlier
  • Trend Micro Internet Security 2021 (v17) and earlier

Impact

Maximum Security 2021

* A user who can log in to the system where the affected product is installed may obtain the administrative privilege. As a result, arbitrary code may be executed on the system

Premium Security 2021, Maximum Security 2021, Internet Security 2021 and Antivirus+ Security 2021

* An attacker may alter the files protected by Folder Shield function without being detected
Solution

[Update the software]
Update the software to the latest version according to the information provided by the developer.
Vendor Information

Trend Micro, Inc.
CWE (What is CWE?)

CVE (What is CVE?)

  1. CVE-2021-32460
  2. CVE-2021-43772
References

  1. JVN : JVNVU#98117192
  2. National Vulnerability Database (NVD) : CVE-2021-32460
  3. National Vulnerability Database (NVD) : CVE-2021-43772
Revision History

  • [2021/12/09]
      Web page was published

Date Public2021/12/08
Date First Published2021/12/09
Date Last Updated2021/12/09