Memory Exhaustion Vulnerability in Trend Micro ServerProtect for Linux 3.0 Allows Local Denial-of-Service Attack

Memory Exhaustion Vulnerability in Trend Micro ServerProtect for Linux 3.0 Allows Local Denial-of-Service Attack

CVE-2021-25225 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a scheduled scan component. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.