CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
50.1%
A DLL Hijacking vulnerability in Trend Micro’s User-Mode Hooking Module (UMH) could allow an attacker to run arbitrary code on a vulnerable system.
Vendor | Product | Version | CPE |
---|---|---|---|
trendmicro | deep_security | 10.0 | cpe:2.3:a:trendmicro:deep_security:10.0:*:*:*:*:*:*:* |
trendmicro | deep_security | 10.1 | cpe:2.3:a:trendmicro:deep_security:10.1:*:*:*:*:*:*:* |
trendmicro | endpoint_sensor | 1.6 | cpe:2.3:a:trendmicro:endpoint_sensor:1.6:*:*:*:*:*:*:* |
trendmicro | officescan | 11.0 | cpe:2.3:a:trendmicro:officescan:11.0:*:*:*:*:*:*:* |
trendmicro | officescan | 12.0 | cpe:2.3:a:trendmicro:officescan:12.0:*:*:*:*:*:*:* |
trendmicro | security | 12.0 | cpe:2.3:a:trendmicro:security:12.0:*:*:*:*:*:*:* |
trendmicro | worry-free_business_security | 9.5 | cpe:2.3:a:trendmicro:worry-free_business_security:9.5:*:*:*:advanced:*:*:* |
trendmicro | worry-free_business_security | 9.5 | cpe:2.3:a:trendmicro:worry-free_business_security:9.5:*:*:*:standard:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
50.1%