CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
15.9%
Trend Micro VPN Proxy Pro version 5.2.1026 and below contains a vulnerability involving some overly permissive folders in a key directory which could allow a local attacker to obtain privilege escalation on an affected system.
Vendor | Product | Version | CPE |
---|---|---|---|
trendmicro | vpn_proxy_one_pro | * | cpe:2.3:a:trendmicro:vpn_proxy_one_pro:*:*:*:*:*:*:*:* |
microsoft | windows | - | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
[
{
"product": "Trend Micro VPN Proxy One Pro (Consumer)",
"vendor": "Trend Micro",
"versions": [
{
"status": "affected",
"version": "5.2.1026 and below"
}
]
}
]
More