JVNDB-2022-001526

[Japanese]
JVNDB-2022-001526
Trend Micro Antivirus for Mac vulnerable to privilege escalation
Overview
Trend Micro Incorporated has released a security update for Trend Micro Antivirus for Mac. Trend Micro Incorporated reported this vulnerability to JPCERT/CC to notify users of the solution through JVN.
CVSS Severity (What is CVSS?)

Affected Products

Trend Micro, Inc. Trend Micro Antivirus for Mac Versions 11.5 and earlier

Impact
A user who can log in to the system where the affected product is installed may obtain the administrative privilege. As a result, arbitrary code may be executed on the system. For more information, refer to the information provided by the developer.
Solution
[Update the software] Update the software to the latest version according to the information provided by the developer.
Vendor Information
Trend Micro, Inc. Trend Micro Incorporated : Security Bulletin: Trend Micro Antivirus for Mac Link Following Privilege Escalation Vulnerability (ZDI-CAN-14816)
CWE (What is CWE?)

CVE (What is CVE?)
CVE-2022-27883
References
JVN : JVNVU#97833256
Revision History
[2022/04/07] Web page was published

Trend Micro Antivirus for Mac vulnerable to privilege escalation