Published:2021/12/08  Last Updated:2021/12/08

JVNVU#98117192
Multiple vulnerabilities in Trend Micro Security 2021 family (Consumer)

Overview

Trend Micro Incorporated has released security updates for Trend Micro Security 2021 family (Consumer).

Products Affected

  • Premium Security 2021 (v17) and earlier
  • Maximum Security 2021 (v17) and earlier
  • Internet Security 2021 (v17) and earlier
  • Antivirus+ Security 2021 (v17) and earlier

Description

Trend Micro Incorporated has released security updates for Trend Micro Security 2021 family (Consumer).

Impact

Maximum Security 2021

  • A user who can log in to the system where the affected product is installed may obtain the administrative privilege. As a result, arbitrary code may be executed on the system
Premium Security 2021, Maximum Security 2021, Internet Security 2021 and Antivirus+ Security 2021
  • An attacker may alter the files protected by Folder Shield function without being detected

Solution

Update the software
Update the software to the latest version according to the information provided by the developer.

Vendor Status

Vendor Link
Trend Micro Incorporated Security Bulletin: Trend Micro Maximum Security 2021 (Consumer) Improper Access Control Local Privilege Escalation Vulnerability
SECURITY BULLETIN: Folder Shield protected folder bypass

References

JPCERT/CC Addendum

Vulnerability Analysis by JPCERT/CC

Credit

Trend Micro Incorporated reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN.

Other Information

JPCERT Alert
JPCERT Reports
CERT Advisory
CPNI Advisory
TRnotes
CVE
JVN iPedia