Exposed Hazardous Function Remote Code Execution Vulnerability in Trend Micro Password Manager (Consumer)

Exposed Hazardous Function Remote Code Execution Vulnerability in Trend Micro Password Manager (Consumer)

CVE-2021-32462 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Trend Micro Password Manager (Consumer) version 5.0.0.1217 and below is vulnerable to an Exposed Hazardous Function Remote Code Execution vulnerability which could allow an unprivileged client to manipulate the registry and escalate privileges to SYSTEM on affected installations. Authentication is required to exploit this vulnerability.

Learn more about our Web Application Penetration Testing UK.