Installer Search Patch Element Vulnerability in Trend Micro Portable Security 3.0 Pro, 3.0, and 2.0

Installer Search Patch Element Vulnerability in Trend Micro Portable Security 3.0 Pro, 3.0, and 2.0

CVE-2022-26319 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

An installer search patch element vulnerability in Trend Micro Portable Security 3.0 Pro, 3.0 and 2.0 could allow a local attacker to place an arbitrarily generated DLL file in an installer folder to elevate local privileges. Please note: an attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.

Learn more about our Web Application Penetration Testing UK.